Patching is the only workaround: Broadcom advisory noted that the flaw does not have any workarounds and customers must apply patches rolled out on Tuesday to defend against exploitation.Affected products include all 11.x and 12.x versions of VMware tools for Windows, and are patched in the 12.5.1[1] rollout. VMware tools for Linux and macOS remain unaffected and customers need to do anything.Earlier this month VMware plugged three critical vulnerabilities affecting its VMware ESXi, Workstation, and Fusion products that were being actively exploited in the wild by attackers. VMware products are an attractive target for threat actors due to their extensive use in enterprise IT, cloud computing, and data centers. Exploitation can grant attackers privileged access, disrupt critical services, and facilitate lateral movement within virtualized environments.
First seen on csoonline.com
Jump to article: www.csoonline.com/article/3854374/vmware-plugs-a-high-risk-vulnerability-affecting-its-windows-based-virtualization.html
