Ref# ADV2024_171 | Date: May 24th 2024

---

VMware has published a security advisory highlighting vulnerabilities in the following products on May 21st, 2024. It is recommended that you take the necessary precautions by ensuring your products are always updated.

• VMware Cloud Foundation (ESXi) – multiple versions
• VMware Cloud Foundation (vCenter Server) – multiple versions
• VMware ESXi – versions 8.0 prior to ESXi80U2sb-23305545 and versions 7.0 prior to ESXi70U3sq-23794019
• VMware Fusion – versions prior to 13.5.1
• VMware vCenter Server – versions 8.0 prior to 8.0 U2b and versions 7.0 prior to 7.0 U3
• VMware Workstation – versions prior to 17.5.1

For more information on this update, you can follow this URL:
VMSA-2024-0011:VMware ESXi, Workstation, Fusion and vCenter Server updates address multiple security vulnerabilities (CVE-2024-22273, CVE-2024-22274, CVE-2024-22275) 

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.

PDF Download: VMware Security Advisory

References

• VMware Security advisories. (May 21st, 2024). Retrieved from VMware.
  https://support.broadcom.com/web/ecx/security-advisory?segment=VC
• VMware Security Advisory for publication. (May 22nd, 2024). Retrieved from Canadian Centre for Cyber Security.
  https://www.cyber.gc.ca/en/alerts-advisories/vmware-security-advisory-av24-287