Threat Post

Critical VMware Zero-Day Bug Allows Command Injection; Patch Pending

VMware explained it has no patch for a critical escalation-of-privileges bug that impacts both Windows and Linux operating systems and its Workspace One. The U.S. Cybersecurity and Infrastructure ...
CSO Online

VMware fixes command injection flaw in Aria Operations

Two other flaws were patched by the virtualization vendor, impacting Cloud Foundation, Telco Cloud Platform, and Telco Cloud Infrastructure as well.
Threat Post

NSA Warns: Patched VMware Bug Under Active Attack

Feds are warning that adversaries are exploiting a weeks-old bug in VMware’s Workspace One Access and VMware Identity Manager products. Active attacks against a flaw in VMware’s Workspace One Access ...
Ars Technica

NSA says Russian state hackers are using a VMware flaw to ransack networks

The National Security Agency says that Russian state hackers are compromising multiple VMware systems in attacks that allow the hackers to install malware, gain unauthorized access to sensitive data, ...
Virtualization Review

Hands On with VMware's New vmcli, 'A Mysterious Command'

While reading the release notes for VMware Workstation 17.6, I saw an interesting blurb under the What's New section titled "Introducing vmcli." [Click on image for larger view.] The introduction ...