Subscribe

Vulnerability In VMware Product Found On Tuesday

May 26, 2021

A vulnerability with remote code was found in a widely used VMware product on Tuesday.

The flaw is in the vCenter Server, a tool used to organize virtualization in large data centers.

The problem was found and fixed the same day.

According to a VMware advisor, vCenter machines that use standard configurations have a bug in many networks that allows malicious code to be executed.

This happens when the machines are accessible on a port that is exposed to the Internet.

The vulnerability has a severity score of 9.8 out of 10.

The vulnerability is tracked as CVE-2021-21985.

CVE-2021-21985 is the second vCenter vulnerability this year with a 9.8 rating.

vCenter versions 6.5, 6.7, and 7.10 are all affected, and users with these machines should focus on this patch.

For more information, read the original story in arstechnica.

Top Stories

How can project sponsors help projects succeed?

AI pioneer Yann LeCun calls Elon Musk’s xAI a ‘failure’

Microsoft sued by shareholders over Azure growth and AI spending

SpaceX shares fall 20% from peak following $60 billion cursor acquisition

Snap unveils first consumer AR glasses priced at more than $2,000

Key U.S. data center law faces expiration with no replacement in sight

Related Articles

Hackers used Meta’s AI support bot to hijack 20,000 Instagram accounts

June 9, 2026 Hackers exploited Meta’s AI-powered support chatbot to gain control of Instagram accounts, including several high-profile profiles. Meta more...

New ‘HTTP/2 Bomb’ attack can crash major web servers from a single computer

June 5, 2026 Security researchers have disclosed a new denial-of-service attack called HTTP/2 Bomb that can overwhelm major web servers more...

CISA exposed internal passwords and cloud keys in public repository

May 20, 2026 The Cybersecurity and Infrastructure Security Agency, the arm of the U.S. government tasked with protecting critical infrastructure more...

Canvas restores service after cyberattack disrupted schools and universities

May 11, 2026 Instructure has restored access to its Canvas learning platform after a cyberattack disrupted service for universities and more...

Picture of TND News Desk

TND News Desk

Staff writer for Tech Newsday.
Picture of TND News Desk

TND News Desk

Staff writer for Tech Newsday.

Jim Love

Jim is an author and podcast host with over 40 years in technology.

Share:
Facebook
Twitter
LinkedIn