VMware Product Security Update Advisory
Overview We have released security updates to fix vulnerabilities in VMware products. Users of affected products are advised to update to the latest version. Affected Products CVE-2025-41236, CVE-2025-41237, CVE-2025-41238, CVE-2025-41239 VMware Cloud Foundation (ESX) Version: 9.0.0.0VMware Cloud Foundation on Windows (VMware Tools) Version: 13.0.0.0VMware vSphere Foundation (ESX) Version:
Broadcom Product Security Update Advisory
Overview We have released a security update to fix vulnerabilities in Broadcom products. users of affected products are advised to update to the latest version. Affected Products VMware Cloud Foundation 5.x Versions VMware Cloud Foundation 4.5.x Versions Resolved Vulnerabilities Path Traversal Vulnerability in
Broadcom Product Security Update Advisory
Overview We have released a security update to fix vulnerabilities in Broadcom products. Users of...
VMware Avi Load Balancer Security Update Advisory (CVE-2025-22217)
Overview We have released a security update to address a vulnerability in VMware Avi Load...
Broadcom Product Security Update Advisory
Overview An update has been released to address vulnerabilities in Broadcom Products. Users of the...
VMware Product Security Update Advisory (CVE-2024-38812, CVE-2024-38813)
Overview An update has been released to address vulnerabilities in VMware Products. Users of the...
VMware Product Security Update Advisory (CVE-2024-38811)
Overview An update has been released to address vulnerabilities in VMware Product. Users of the...
VMware Product Security Update Advisory (CVE-2024-37085)
Overview VMware has released updates to fix vulnerabilities in their products. Users of affected...
VMware Family Security Update Advisory (CVE-2024-22273, CVE-2024-22274)
Overview An update has been made available to fix vulnerabilities in the VMware family of...
Lazarus Group Exploiting Log4Shell Vulnerability (NukeSped)
In December last year, the vulnerability (CVE-2021-44228) of Java-based logging utility Log4j became a worldwide issue. It is a remote code execution vulnerability that can include the remote Java object address in the log message and send it to the server using Log4j to run the Java object in the
