(I)IoT Security News
Market, News, Recommendations, Remediation, Reports, Uncategorized

VMware Releases Security Updates

VMware has released security updates to address multiple vulnerabilities in VMware Cloud Foundation. A remote attacker could exploit one of these vulnerabilities to take control of an affected system.

Multiple vulnerabilities were privately reported to VMware. Updates are available to address this vulnerability in affected VMware products.

  1. VMware Cloud Foundation update addresses a remote code execution vulnerability via XStream (CVE-2021-39144)

Description

VMware Cloud Foundation contains a remote code execution vulnerability via XStream open source library. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.

Known Attack Vectors

Due to an unauthenticated endpoint that leverages XStream for input serialization in VMware Cloud Foundation (NSX-V), a malicious actor can get remote code execution in the context of ‘root’ on the appliance.

Resolution

To remediate CVE-2021-39144 apply the patches listed in the ‘Fixed Version’ column of the ‘Response Matrix’ below.

Workarounds

None.

Additional Documentation

A supplemental FAQ was created for additional clarification. Please see: https://kb.vmware.com/s/article/89932

Notes

Acknowledgements

VMware would like to thank Sina Kheirkhah and Steven Seeley of Source Incite for reporting these issues to us.

Response Matrix

ProductVersionRunning OnCVE IdentifierCVSSv3SeverityFixed VersionWorkaroundsAdditional Documentation
VMware Cloud Foundation4.xAnyCVE-2021-39144N/AN/AUnaffectedN/AN/A
VMware Cloud Foundation (NSX-V)3.11AnyCVE-2021-391449.8Critical KB 89809NoneFAQ

2. VMware Cloud Foundation update addresses an XML External Entity (XXE) vulnerability (CVE-2022-31678)

Description

VMware Cloud Foundation contains an XML External Entity (XXE) vulnerability. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 5.3.

Known Attack Vectors

An unauthenticated user may exploit this issue leading to a denial-of-service condition or unintended information disclosure.

Resolution

To remediate CVE-2022-31678 apply the patches listed in the ‘Fixed Version’ column of the ‘Response Matrix’ below.

Workarounds

None

Acknowledgements

VMware would like to thank Sina Kheirkhah and Steven Seeley of Source Incite for reporting these issues to us.

Response Matrix

ProductVersionRunning OnCVE IdentifierCVSSv3SeverityFixed VersionWorkaroundsAdditional Documentation
VMware Cloud Foundation4.xAnyCVE-2022-31678N/AN/AUnaffectedN/AN/A
VMware Cloud Foundation (NSX-V)3.11AnyCVE-2022-316785.3Moderate KB 89809NoneNone.

3. Fixed Version(s) and Release Notes:

VMware vCloud Foundation 3.11
Downloads and Documentation:

https://docs.vmware.com/en/VMware-Cloud-Foundation/3.11/rn/vmware-cloud-foundation-311-release-notes/index.html

Mitre CVE Dictionary Links:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-39144

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31678

FIRST CVSSv3 Calculator:
CVE-2021-39144: https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVE-2022-31678: https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

4. Change Log

2022-10-25 VMSA-2022-0027
Initial security advisory.

2022-10-27 VMSA-2022-0027.1
Updated advisory with information that VMware has confirmed exploit code leveraging CVE-2021-39144 against VCF (NSX-V) has been published.

Source:
https://www.vmware.com/security/advisories/VMSA-2022-0027.html

Related posts

Rockwell Automation ISaGRAF5 Runtime (Update A)

(I) IoT
3 years ago

Siemens PROFINET Devices (Update G)

(I) IoT
4 years ago

Siemens SIMATIC, SINAMICS, SINEC, SINEMA, SINUMERIK

(I) IoT
4 years ago
Exit mobile version