Over 6,700 VMware servers exposed, vulnerable to bugs: Report

San Francisco, Feb 25 (IANS): Cyber security researchers have discovered that over 6,700 servers of enterprise software major VMware are currently exposed online, are connected to the internet and vulnerable to new bugs by hackers.

The exposed servers can let hackers slip malware into unpatched devices and take over companies' entire networks, reports ZDNet.

"We've detected mass scanning activity targeting vulnerable VMware vCenter servers," threat intelligence firm Bad Packets said in a tweet late on Wednesday..

A Chinese security researcher has also published a proof-of-concept code on their blog for a vulnerability in VMware servers billed as "CVE-2021-21972".

This vulnerability impacts vSphere Client (HTML5), a plugin of VMware vCenter, a type of server usually deployed inside large enterprise networks.

"It is a centralised management utility through which IT personnel manage VMware products installed on local workstations".

Another cyber security firm PT Swarm tweeted: "VMware fixed an Unauth RCE in vCenter (CVE-2021-21972) found by our researcher Mikhail Klyuchnikov".

The issue has been classified as "highly critical" and privately reported to VMware, which has released official patches, the report noted.

"Making matters worse, the exploit for this bug is also a one-line cURL request, which makes it easy even for low-skilled threat actors to automate attacks," it added.

More than 6,700 VMware vCenter servers are currently connected to the internet and "are now vulnerable to takeover attacks if administrators failed to apply the CVE-2021-21972 patches".

VMware has urged customers to update their systems as soon as possible.


Top Stories

Leave a Comment

Title: Over 6,700 VMware servers exposed, vulnerable to bugs: Report

You have 2000 characters left.


Please write your correct name and email address. Kindly do not post any personal, abusive, defamatory, infringing, obscene, indecent, discriminatory or unlawful or similar comments. Daijiworld.com will not be responsible for any defamatory message posted under this article.

Please note that sending false messages to insult, defame, intimidate, mislead or deceive people or to intentionally cause public disorder is punishable under law. It is obligatory on Daijiworld to provide the IP address and other details of senders of such comments, to the authority concerned upon request.

Hence, sending offensive comments using daijiworld will be purely at your own risk, and in no way will Daijiworld.com be held responsible.