1.0 Introduction
VMware has released security updates to address multiple vulnerabilities in VMware Cloud Foundation.
2.0 Impact
A remote attacker could exploit one of these vulnerabilities to take control of an affected system.
3.0 Affected Products
VMware Cloud Foundation (Cloud Foundation)
4.0 Recommendations
Users and Administrators must review the VMware Security Advisory at VMSA-2022-002 and apply the necessary updates and workarounds.
Generally, MyCERT advises the users of these devices to be updated with the latest security announcements by the vendor and follow best practice security policies to determine which updates should be applied.
For further enquiries, please contact MyCERT through the following channels:
E-mail: cyber999[at]cybersecurity.my
Phone: 1-300-88-2999 (monitored during business hours)
Mobile: +60 19 2665850 (24x7 call incident reporting)
Business Hours: Mon - Fri 09:00 -18:00 MYT
Web: https://www.mycert.org.my
Twitter: https://twitter.com/mycert
Facebook: https://www.facebook.com/mycert.org.my
5.0 References
https://www.cisa.gov/uscert/ncas/current-activity/2022/10/28/vmware-releases-security-updates
https://www.vmware.com/security/advisories/VMSA-2022-0027.html