Skip to main content

VMware rolls out security updates to address zero-day bug

posted onDecember 8, 2020
by l33tdawg
computing.co.uk
Credit: computing.co.uk

VMware has rolled out security updates to address a zero-day vulnerability that impacts VMware Workspace One Access and other platforms for both Windows and Linux systems.

The bug, indexed as CVE-2020-4006, was publically disclosed last month and VMware warned that it could allow an attacker to take control of a vulnerable system. The company also published workaround instructions to help admins mitigate the flaw on affected systems.

VMware credited the US National Security Agency (NSA) for discovering the bug and reporting it to the company. CVE-2020-4006 is a command injection bug that exists in the admin configurator of some VMware products and could enable attackers to escalate privileges and run malicious commands on the host Windows and Linux operating systems.

Source

Tags

Security

You May Also Like

Recent News

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th

Friday, June 7th