https://community.isc2.org/t5/Tech-Talk/VMware-vuln-with-9-8-severity-rating-is-under-attack/m-p/45899#M3231 <P>For anyone using VMware, a new vulnerability (<SPAN>CVE-2021-21985) resides in theCVE-2021-21985, resides in the vCenter Server.</SPAN></P><P>&nbsp;</P><P><SPAN>As of Friday (June 4th), there were reports that folks were seeing active scans for it.</SPAN></P><P>&nbsp;</P><P><A href="https://arstechnica-com.cdn.ampproject.org/c/s/arstechnica.com/gadgets/2021/06/under-exploit-vmware-vulnerability-with-severity-rating-of-9-8-out-of-10/?amp=1" target="_blank">https://arstechnica-com.cdn.ampproject.org/c/s/arstechnica.com/gadgets/2021/06/under-exploit-vmware-vulnerability-with-severity-rating-of-9-8-out-of-10/?amp=1</A></P><P>&nbsp;</P><P>d</P><P>&nbsp;</P> Sun, 06 Jun 2021 21:31:51 GMT dcontesti 2021-06-06T21:31:51Z https://community.isc2.org/t5/Tech-Talk/VMware-vuln-with-9-8-severity-rating-is-under-attack/m-p/45899#M3231 <P>For anyone using VMware, a new vulnerability (<SPAN>CVE-2021-21985) resides in theCVE-2021-21985, resides in the vCenter Server.</SPAN></P><P>&nbsp;</P><P><SPAN>As of Friday (June 4th), there were reports that folks were seeing active scans for it.</SPAN></P><P>&nbsp;</P><P><A href="https://arstechnica-com.cdn.ampproject.org/c/s/arstechnica.com/gadgets/2021/06/under-exploit-vmware-vulnerability-with-severity-rating-of-9-8-out-of-10/?amp=1" target="_blank">https://arstechnica-com.cdn.ampproject.org/c/s/arstechnica.com/gadgets/2021/06/under-exploit-vmware-vulnerability-with-severity-rating-of-9-8-out-of-10/?amp=1</A></P><P>&nbsp;</P><P>d</P><P>&nbsp;</P> Sun, 06 Jun 2021 21:31:51 GMT https://community.isc2.org/t5/Tech-Talk/VMware-vuln-with-9-8-severity-rating-is-under-attack/m-p/45899#M3231 dcontesti 2021-06-06T21:31:51Z https://community.isc2.org/t5/Tech-Talk/VMware-vuln-with-9-8-severity-rating-is-under-attack/m-p/45906#M3233 <BLOCKQUOTE><HR /><P><SPAN>a tool for managing ...&nbsp;</SPAN><SPAN>&nbsp;execution of malicious code ... on a port that is exposed to the Internet.</SPAN></P><HR /></BLOCKQUOTE><P>Looks like it is an attack against the admin interface.&nbsp; Rookie mistake to expose those to the Internet.&nbsp; Really they belong on a dedicated, restricted-access Vlan.</P> Mon, 07 Jun 2021 01:24:07 GMT https://community.isc2.org/t5/Tech-Talk/VMware-vuln-with-9-8-severity-rating-is-under-attack/m-p/45906#M3233 denbesten 2021-06-07T01:24:07Z