Broadcom has released security updates addressing CVE-2024-38812, a heap-overflow vulnerability in VMWare vCenter Server. With a CVSS score of 9.8, this critical vulnerability is present in implementing the DCE/RPC protocol and could lead to RCE. An attacker with network access to the vCenter Server could exploit this vulnerability by sending a specially crafted network packet.
Earlier this year, Zbl and srs of team TZL reported the bug at the Matrix Cup cybersecurity competition in China. VMWare initially patched it in September 2024 but later realized that the patches were ineffective and released new updates to correct them.
No public proof-of-concept has been released, and there are no records of active exploitation. Users are, however, urged to patch their instances immediately since threat actors have been known to exploit VMWare vulnerabilities in the past.
A patch management software can instantly bring down your risks by 3x by foreseeing upcoming vulns and remediating them.
Affected Products by CVE-2024-38812 and Solutions
The following products are affected by this flaw. There are currently no known mitigations, but the patched versions are mentioned below.
- vCenter Server 8.0 (Fixed in 8.0 U3b)
- vCenter Server 7.0 (Fixed in 7.0 U3s)
- VMware Cloud Foundation 5.x (Fixed in 8.0 U3b as an asynchronous patch)
- VMware Cloud Foundation 4.x (Fixed in 7.0 U3s as an asynchronous patch)
Instantly Fix Risks with SanerNow Patch Management
SanerNow patch management is a continuous, automated, and integrated software that instantly fixes risks exploited in the wild. The software supports major operating systems like Windows, Linux, and macOS, as well as 550+ third-party applications.
It also allows you to set up a safe testing area to test patches before deploying them in a primary production environment. SanerNow patch management additionally supports a patch rollback feature in case of patch failure or a system malfunction.
Experience the fastest and most accurate patching software here.
