Critical VMware Vulnerability: VMSA-2022-0014

VMware recently released information regarding VMSA-2022-0014, a critical authentication bypass & privilege escalation vulnerability for multiple products. In this blog post, I’ve collated some key information to swiftly identify if you’re impacted, as well as calling out must know information around remediation.

VMware vCenter Log4j Patches Available

As of yesterday, VMware released the vCenter Log4j fixes for releases 6.5 and 6.7 of both their vCenter Server Appliance and vCenter Server (for Windows). Combined with the previously released vCenter 7.0 patch, VMware now offer complete protection against the currently disclosed Log4j vulnerabilities within the VMware vCenter product. What version do I need? Depending… Continue reading VMware vCenter Log4j Patches Available

Veeam Supported Products Reaching End of Life in 2022

After my last post highlighting the Veeam software that reaches end of support in 2022, I wanted to expand this further and discuss software that Veeam works with that will be approaching end of life in 2022. Why does this matter when I’m just trying to protect the data? Times change, and software changes with… Continue reading Veeam Supported Products Reaching End of Life in 2022

VMware Log4j Vulnerabilities Confirmed

I don’t often dedicate a blog post to a particular security vulnerability, but since it has scored a perfect 10 CVE rating, it’s important to be aware ASAP. VMware have identified multiple products that utilise the Apache technology that are vulnerable to the Log4j vulnerability. What is this “Log4j” vulnerability? A Remote Code Execution (RCE)… Continue reading VMware Log4j Vulnerabilities Confirmed

VMware Workstation Pro 16 for Linux – Unable to Compile modules

So I recently revived an old laptop to run Ubuntu and the first thing I installed was VMware Workstation. When first starting VMware Workstation I was asked to compile the vmmon and vmnet modules. Unfortunately, it failed, when reviewing the output (stored within the /tmp/ folder) I found the following key lines (collated below): The… Continue reading VMware Workstation Pro 16 for Linux – Unable to Compile modules

Data Protection Best Practice: Encrypting Backups

Today I want to talk about backups, and the importance of encrypting them, everywhere. When people think of encrypted backups, the usual first thoughts are around portable backups such as tape and USB or backups outside of your trust domain such as cloud storage. This is a great starting point, and if you’re not currently… Continue reading Data Protection Best Practice: Encrypting Backups

VMware vCenter Server Appliance: Sequence Wrong Size for a Certificate when replacing SSL Certificates

Hi! Just a quick one today. I was replacing a certificate for a customer’s VCSA today with one from their internal CA when I hit the error “Sequence Wrong Size for a Certificate”. To clarify, I had generated a CSR from the VCSA, requested the certificate from the CA, downloaded this and the certificate chain… Continue reading VMware vCenter Server Appliance: Sequence Wrong Size for a Certificate when replacing SSL Certificates

Windows Server 2022 Released – What to remember before you start upgrading!

Microsoft dropped a surprise on us today by releasing Windows Server 2022 to no fanfare at all. It’s been released today 18th August 2021, it will have mainstream support until the 13th October 2026 and will be considered end of life on the 14th October 2031 (how are we talking about the 2030’s already?!). This… Continue reading Windows Server 2022 Released – What to remember before you start upgrading!

VMware vSphere 6.5 – End of General Support Changes

Hey everyone! VMware released some unexpected news yesterday regarding the end of support for vSphere & vCenter 6.5 and vSAN 6.5 & 6.6. These were both originally intended to reach End of General Support (EoGS) this year, on the 15th November 2021. VMware are now extending this general support window to the 15th October 2022,… Continue reading VMware vSphere 6.5 – End of General Support Changes