VMware recently released information regarding VMSA-2022-0014, a critical authentication bypass & privilege escalation vulnerability for multiple products. In this blog post, I’ve collated some key information to swiftly identify if you’re impacted, as well as calling out must know information around remediation.
Tag: VMware
VMware vCenter Log4j Patches Available
As of yesterday, VMware released the vCenter Log4j fixes for releases 6.5 and 6.7 of both their vCenter Server Appliance and vCenter Server (for Windows). Combined with the previously released vCenter 7.0 patch, VMware now offer complete protection against the currently disclosed Log4j vulnerabilities within the VMware vCenter product. What version do I need? Depending… Continue reading VMware vCenter Log4j Patches Available
Veeam Supported Products Reaching End of Life in 2022
After my last post highlighting the Veeam software that reaches end of support in 2022, I wanted to expand this further and discuss software that Veeam works with that will be approaching end of life in 2022. Why does this matter when I’m just trying to protect the data? Times change, and software changes with… Continue reading Veeam Supported Products Reaching End of Life in 2022
VMware Log4j Vulnerabilities Confirmed
I don’t often dedicate a blog post to a particular security vulnerability, but since it has scored a perfect 10 CVE rating, it’s important to be aware ASAP. VMware have identified multiple products that utilise the Apache technology that are vulnerable to the Log4j vulnerability. What is this “Log4j” vulnerability? A Remote Code Execution (RCE)… Continue reading VMware Log4j Vulnerabilities Confirmed
VMware Workstation Pro 16 for Linux – Unable to Compile modules
So I recently revived an old laptop to run Ubuntu and the first thing I installed was VMware Workstation. When first starting VMware Workstation I was asked to compile the vmmon and vmnet modules. Unfortunately, it failed, when reviewing the output (stored within the /tmp/ folder) I found the following key lines (collated below): The… Continue reading VMware Workstation Pro 16 for Linux – Unable to Compile modules
Data Protection Best Practice: Encrypting Backups
Today I want to talk about backups, and the importance of encrypting them, everywhere. When people think of encrypted backups, the usual first thoughts are around portable backups such as tape and USB or backups outside of your trust domain such as cloud storage. This is a great starting point, and if you’re not currently… Continue reading Data Protection Best Practice: Encrypting Backups
VMware vCenter Server Appliance: Sequence Wrong Size for a Certificate when replacing SSL Certificates
Hi! Just a quick one today. I was replacing a certificate for a customer’s VCSA today with one from their internal CA when I hit the error “Sequence Wrong Size for a Certificate”. To clarify, I had generated a CSR from the VCSA, requested the certificate from the CA, downloaded this and the certificate chain… Continue reading VMware vCenter Server Appliance: Sequence Wrong Size for a Certificate when replacing SSL Certificates
Windows Server 2022 Released – What to remember before you start upgrading!
Microsoft dropped a surprise on us today by releasing Windows Server 2022 to no fanfare at all. It’s been released today 18th August 2021, it will have mainstream support until the 13th October 2026 and will be considered end of life on the 14th October 2031 (how are we talking about the 2030’s already?!). This… Continue reading Windows Server 2022 Released – What to remember before you start upgrading!
VMware vSphere 6.5 – End of General Support Changes
Hey everyone! VMware released some unexpected news yesterday regarding the end of support for vSphere & vCenter 6.5 and vSAN 6.5 & 6.6. These were both originally intended to reach End of General Support (EoGS) this year, on the 15th November 2021. VMware are now extending this general support window to the 15th October 2022,… Continue reading VMware vSphere 6.5 – End of General Support Changes
New Veeam B&R v11 Features: License and Deployment FAQs
With some veeamazing new features available in the v11 suite of Veeam products, there’s a lot to talk about, but if you’re an existing customer it’s important to know what updates you’re getting for free based on your license!