This is our daily post that is shared across Twitter & Telegram and published first on here with Kindness & Love XX on peace-truth.com/
#AceNewsRoom With ‘Kindness & Wisdom’ May.20, 2022 @acebreakingnews
Follow Our Breaking & Daily News Here As It Happens:
#AceSecurityDesk – Background /What has happened? In April and May 2022, VMware released two security advisories (VMSA-2022-0011 & VSMA-2022-0014) relating to multiple vulnerabilities in their products.
20 May 2022
Dear ACSC Alert Service subscriber
Exploiting the vulnerabilities may allow malicious actors to trigger a server-side template injection that may result in remote code execution (CVE-2022-22954); escalate privileges to ‘root’ (CVE-2022-22960 and CVE-2022-22973); and obtain administrative access without the need to authenticate (CVE-2022-22972).
In addition, the ACSC is aware of malicious actors attempting to exploit a remote code execution (RCE) vulnerability in VMware products (CVE-2022-22954). VMware released a security advisory relating to these vulnerabilities in April 2022. Exploitation of an RCE vulnerability could allow a malicious actor to remotely install malware or otherwise control the affected device.
VMware, Inc. is an American cloud computing and virtualization technology company. VMware products include virtualization, networking and security management tools, software-defined data center software, and storage software.
Mitigation / How do I stay secure?
Australian organisations who use VMware products should review their patch status and follow VMware’s patch instructions.
For a full list of affected products, refer to VMware’s security advisories:
The ACSC recommends VMware users continue to monitor the VMware website for updates and future vulnerabilities.
Assistance / Where can I go for help?
The ACSC is monitoring the situation and can provide assistance and advice as required. Organisations that have been impacted or require assistance can contact the ACSC cyber.gov.au/report or 1300 CYBER1 (1300 292 371).
Read this alert on the website.
Are you a victim of cybercrime? Visit ReportCyber to take your next steps: We use hyperlinks to give you more information. If you don’t want to click hyperlinks, you can search for the information on the ACSC website.
CONTACT US
Facebook: https://www.facebook.com/cybergovau
Twitter: https://twitter.com/CyberGovAU
Web: https://www.cyber.gov.au
Editor says …Sterling Publishing & Media Service Agency is not responsible for the content of external site or from any reports, posts or links, and can also be found here on Telegram: https://t.me/acenewsdaily and all wordpress and live posts and links here: https://acenewsroom.wordpress.com/ and thanks for following as always appreciate every like, reblog or retweet and free help and guidance tips on your PC software or need help & guidance from our experts AcePCHelp.WordPress.Com
You must be logged in to post a comment.