Page Content
VMware has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.
Affected products and versions:
| Product | Product Version | Running On | Severity | Replace_with/ Apply_Patch | Mitigation/ Workaround |
| vCD | 9.5.x | Any | Critical | 9.5.0.3 | None |
| ESXi | 6.7 | Any | Critical | ESXi670-201903001 | None |
| ESXi | 6.5 | Any | Critical | ESXi650-201903001 | None |
| ESXi | 6.0 | Any | Critical | ESXi600-201903001 | None |
| Workstation | 15.x | Any | Critical | 15.0.4 | None |
| Workstation | 14.x | Any | Critical | 14.1.2007 | None |
| Fusion | 11.x | OSX | Critical | 11.0.3 | None |
| Fusion | 10.x | OSX | Critical | 10.1.2006 | None |
CERT Bulgaria recommends users and administrators to review the VMware Security Advisories VMSA-2019-0004 and VMSA-2019-0005 and apply the necessary updates.
https://www.vmware.com/security/advisories/VMSA-2019-0004.html
https://www.vmware.com/security/advisories/VMSA-2019-0005.html