VMware fixes critical RCE, make-me-root bugs in vCenter – for the second time
October 22, 2024 at 01:05PM VMware released a second patch for two critical vulnerabilities in vCenter Server: CVE-2024-38812 (heap overflow, CVSS 9.8) and CVE-2024-38813 (privilege escalation, CVSS 7.5). Both flaws could allow remote code execution and administrative access, prompting urgent patching. No known exploits exist, but attackers target VMware systems extensively. ### Meeting Takeaways 1. … Read more