Ask any devices or smart home question in the Devices/Security or Network Troubleshooting Categories.
Critical VMware Bug Opens Up Corporate Treasure to Hackers
The bug — rated 10 in severity — potentially affects large numbers of corporate VMs and hosts.
A critical information-disclosure bug in VMware’s Directory Service (vmdir) could lay bare the contents of entire corporate virtual infrastructures, if exploited by cyberattackers.
The vmdir is part of VMware’s vCenter Server product, which provides centralized management of virtualized hosts and virtual machines (VMs) from a single console. According to the product description, “a single administrator can manage hundreds of workloads.”
These workloads are governed by a single sign-on (SSO) mechanism to make things easier for administrators; rather than having to sign into each host or VM with separate credentials in order to gain visibility to it, one authentication mechanism works across the entire management console.
To continue reading this article please click on the Source link above.
-Warden Anastasia Luccio, Captain