VMware Family February 2024 Round 1 Security Update Advisory

Feb 13 2024

Overview

VMware(https://www.vmware.com) has released a security update that fixes vulnerabilities in products it has been made. Users of affected products are advised to update to the latest version.

Affected Products

VMware Aria Operations for Networks version 6.x

Resolved Vulnerabilities

Local Elevation of Privilege Vulnerability (CVE-2024-22237)

Cross Site Scripting Vulnerability (CVE-2024-22238)

Local Elevation of Privilege Vulnerability (CVE-2024-22239)

Local File Read Vulnerability (CVE-2024-22240)

Cross Site Scripting Vulnerability (CVE-2024-22241)

Vulnerability Patches

The 02/06/2024 update provided the following product-specific vulnerability patches

VMware Aria Operations for Networks KB96450 Version [2]

Referenced Sites

[1] VMware Aria Operations for Networks (Formerly vRealize Network Insight) updates address multiple vulnerabilities (CVE-2024-22237, CVE-2024-22238, CVE-2024-22239, CVE-2024-22240, CVE-2024-22241)

https://www.vmware.com/security/advisories/VMSA-2024-0002.html

[2] http://kb.vmware.com/s/article/96450

VMware Family February 2024 Round 1 Security Update Advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Linux Kernel Vulnerability Security Update Advisory (CVE-2023-6200)

Atlassian Confluence Security Update Advisory (CVE-2024-21672)

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Tags:

Linux Kernel Vulnerability Security Update Advisory (CVE-2023-6200)

Atlassian Confluence Security Update Advisory (CVE-2024-21672)