VMware

VMware patches Critical Carbon Black AppC authentication bypass vulnerability (CVE-2021-21998)

VMware has patched a Critical authentication vulnerability CVE-2021-21998 in VMware Carbon Black App Control (AppC). The tech giant also issued a security advisory for a High risk vulnerability in VMware Tools, VMware Remote Console for Windows (VMRC) and VMware App Volumes products.

Tags: , , , , , ,

Thousands of unpatched VMware vCenter servers exposed on the internet

Security researchers have spotted thousands of vulnerable unpatched VMware vCenter servers exposed on the internet. Multiple proof-of-concepts (PoCs) have also been posted online for exploits against a remote code execution (RCE) vulnerability CVE-2021-21985.

Tags: , , , , ,