Category Archives: Virtualization

VMware ESXi security updates fix vulnerabilities

[German]Vendor VMware has released a new VMware Security Advisory VMSA-2021-0014 with a severity rating of “Important” as of July 13, 2021. VMware ESXi updates fix authentication and denial of service vulnerabilities (CVE-2021-21994, CVE-2021-21995). The whole thing affects VMware ESXi and … Continue reading

Posted in Security, Update, Virtualization | Tagged , , , | Leave a comment

Advertising

Windows 10: Outlook 2013 fails, if virtualization software is installed

[German]Today a blog post about a crude problem reported to me by a user (thanks for pointing it out). The Microsoft Outlook 2013 used in the environment seems to have problems under Windows 10 from version 2004, if one is … Continue reading

Posted in issue, Office, Virtualization, Windows | Tagged , , | Leave a comment

Windows Server 2019: VM dops BSOD due to Windows Defender

[German]German blog reader Carsten W. has already pointed out to me a few days ago a problem that was bothering him a bit. A virtual machine with Windows Server 2019 running under VMware ESX had gone bye-bye with a blue … Continue reading

Posted in issue, Virtualization, Windows | Tagged , , | 1 Comment

Attacks on VMware vCenter servers, proof of concept available

[German]At the end of May, in the post Vulnerability CVE-2021-21985 in vSphere Client, patch it! I had reported about a CVE-2021-21985 vulnerability in VMware vSphere client and called for patching. Now, not only has a proof of concept (PoC) become … Continue reading

Posted in Security, Virtualization | Tagged | Leave a comment

PoC for Hyper-V vulnerability (CVE-2021-28476) in vmswitch.sys

[German]There is a remote code execution vulnerability (CVE-2021-28476) in Microsoft’s Hyper-V virtualization solution that allows a guest-to-host attack. Microsoft provided security updates in May 2021, so the vulnerability could be closed. Now a security researcher has published a proof of … Continue reading

Posted in Security, Virtualization, Windows | Tagged , | Leave a comment

Advertising

Vulnerability CVE-2021-21985 in vSphere Client, patch it!

[German]VMware has issued an urgent security warning to users of vSphere. The vSphere Client (HTML5) contains a critical vulnerability CVE-2021-21985 that could allow remote code execution due to a lack of input validation in the Virtual SAN Health Check plug-in, … Continue reading

Posted in Security, Software, Virtualization | Tagged , , | Leave a comment

VMware publishes details of security vulnerability

[German]VMware has fixed an authentication bypass vulnerability in data center security software with a patch. The security update should be installed as soon as possible. Advertising

Posted in Security, Update, Virtualization | Tagged , , | Leave a comment

Patch your VMware View Planner

[German]VMware View Planner has several vulnerabilities, that can be used for Remote Code Execution (RCE). VMware has issued a warning and also security updates for View Planner. Advertising

Posted in Security, Update, Virtualization | Tagged , , | Leave a comment
Advertising

Mass scan for vulnerable VMware vCenter instances

[German]If you administrate VMware vCenter instances, make sure they are patched to the latest version. Currently, hackers seem to be scanning the Internet for unpatched VMware vCenter instances. The goal: to take over these vCenter instances for their own purposes … Continue reading

Posted in Security, Virtualization | Tagged , | Leave a comment

RansomExx ransomware group targets VMWare ESXi vulnerabilities

[German]A warning for administrators of VMWare ESXi systems. The RansomExx ransomware gang appears to be involved in several incidents where vulnerabilities in VMWare ESXi instances have been exploited to attack virtual machines and encrypt their virtual disks. Advertising

Posted in Security, Virtualization | Tagged , | Leave a comment