Licensing has always been a core operational aspect of running VMware Cloud Foundation, and with version 9.0 the underlying model has been significantly modernized, simplified, and streamlined. Instead of juggling individual keys for vCenter, ESXi, vSAN and add‑ons across multiple environments, VCF 9.0 introduces a single, centrally managed license model that ties into VMware Cloud Foundation Operations and the VCF […]
VMware by Broadcom has released VMware vCenter and NSX updates to address multiple vulnerabilities CVE-2025-41250, CVE-2025-41251, CVE-2025-41252. Multiple vulnerabilities in VMware vCenter and NSX were privately reported to Broadcom. Updates are available to remediate these vulnerabilities in affected Broadcom products. Impacted Products CVE-2025-41250 | vCenter SMTP header injection vulnerability Description: VMware vCenter contains an SMTP header injection vulnerability. Broadcom has evaluated the severity of this […]
VMware by Broadcom has released VMware Aria Operations and VMware Tools updates address multiple vulnerabilities CVE-2025-41244, CVE-2025-41245, CVE-2025-41246. Multiple vulnerabilities in VMware Aria Operations and VMware Tools were privately reported to Broadcom. Patches are available to remediate these vulnerabilities in affected Broadcom products. Impacted Products CVE-2025-41244 | Local privilege escalation vulnerability Description:VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. Broadcom has evaluated […]
VMware by Broadcom has released VMware NSX updates to address multiple vulnerabilities CVE-2025-22243, CVE-2025-22244, CVE-2025-22245. Multiple vulnerabilities in VMware NSX were privately reported to VMware. Updates are available to remediate these vulnerabilities in affected VMware products. Impacted Products CVE-2025-22243 | Stored Cross-Site Scripting (XSS) vulnerability in Manager-UI Description:VMware NSX Manager UI is vulnerable to a stored Cross-Site Scripting (XSS) attack […]
VMware by Broadcom has released VMware ESXi, vCenter Server, Workstation, and Fusion updates to address multiple vulnerabilities CVE-2025-41225, CVE-2025-41226, CVE-2025-41227, CVE-2025-41228. Multiple vulnerabilities in ESXi, vCenter Server, and Workstation were privately reported to VMware. Updates are available to remediate these vulnerabilities in affected VMware products. Impacted Products CVE-2025-41225 | VMware vCenter Server authenticated command-execution vulnerability Description:The vCenter Server contains an authenticated […]
VMware by Broadcom has released VMware Cloud Foundation updates to address multiple vulnerabilities CVE-2025-41229, CVE-2025-41230, CVE-2025-41231. Multiple vulnerabilities in VMware Cloud Foundation were privately reported to VMware. Updates are available to remediate these vulnerabilities in affected VMware products. Impacted Products: CVE-2025-41229 | VMware Cloud Foundation Directory Traversal Vulnerability Description:VMware Cloud Foundation contains a directory traversal vulnerability. VMware has evaluated the severity of […]
VMware by Broadcom has released a VMware NSX update to address multiple vulnerabilities CVE-2024-38818, CVE-2024-38817, and CVE-2024-38815. Impacted Products: CVE-2024-38817 | VMware NSX command injection vulnerability Description:VMware NSX contains a command injection vulnerability. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 6.7. A malicious actor with access to the NSX […]
VMware has released a security advisory that addresses vulnerabilities CVE-2024-38812 and CVE-2024-38813. These vulnerabilities can allow for heap-overflow and privilege escalation attacks. VMware has published fixes for both vulnerabilities in VMware Cloud Foundation and vCenter Server. Impacted Products: CVE-2024-38812 | VMware vCenter Server heap-overflow vulnerability Description:The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. VMware […]
