{"id":7448,"date":"2022-01-28T17:58:17","date_gmt":"2022-01-29T00:58:17","guid":{"rendered":"https:\/\/webdev.securin.xyz\/?p=7448"},"modified":"2023-04-05T12:35:23","modified_gmt":"2023-04-05T19:35:23","slug":"patch-now-vmware-fixed-cve-2021-22045-heap-overflow-vulnerability","status":"publish","type":"post","link":"https:\/\/10.42.32.162\/articles\/patch-now-vmware-fixed-cve-2021-22045-heap-overflow-vulnerability\/","title":{"rendered":"Patch Now: Vmware Fixed CVE-2021-22045 Heap-Overflow Vulnerability"},"content":{"rendered":"<p dir=\"ltr\">On January 04, 2022, VMware has published security fixes for its Workstation, Fusion, and ESXi products to address a heap-overflow vulnerability identified as CVE-2021-22045. Attackers on various VMware platforms can exploit a virtual CD-ROM drive to execute malicious code in the hypervisor; however, not all products have been fixed as of yet.<\/p>\n<blockquote>\n<p dir=\"ltr\">Users of ESXi version 7 are still waiting for a complete fix for this high-severity heap-overflow security flaw, in the meantime Cloud Foundation, Fusion, and Workstation users install the patches straight away.<\/p>\n<\/blockquote>\n<p dir=\"ltr\">The CVSS v3 base score for this vulnerability is 7.8, which is classified as &#8220;high&#8221; in severity. A heap overflow is a memory issue that can corrupt data or introduce unexpected behavior into any process accessing the affected memory area &#8211; in some cases resulting in remote code execution (RCE) and Denial of Service (DoS).<\/p>\n<p dir=\"ltr\"><a href=\"https:\/\/twitter.com\/VMwareSRC\/status\/1478395487501828102\"><img decoding=\"async\" style=\"width: 383px; height: 383px; border-width: 1px; border-style: solid;\" src=\"https:\/\/lh5.googleusercontent.com\/C8B0tquBh9_1kTtLZAAbieONFg8Gj-bHbJ3GtXrtIwkuq7GicwYC3-SH4cXMACpHxTTK63mhtrh2__fG8FPMCAdw3wpUWFsGceIZCSh-Kr5B5CWcY3EfCFc_exN_0FVa6Vbj8M2B\" \/><\/a><\/p>\n<h2 dir=\"ltr\">Affected Products<\/h2>\n<p>&nbsp;<\/p>\n<p dir=\"ltr\">The vulnerability affects Windows, Linux, and Mac users throughout the virtualization specialist&#8217;s portfolio.<\/p>\n<table border=\"1\" align=\"center\">\n<colgroup>\n<col width=\"100\" \/>\n<col width=\"78\" \/>\n<col width=\"70\" \/>\n<col width=\"57\" \/>\n<col width=\"53\" \/>\n<col width=\"67\" \/>\n<col width=\"85\" \/>\n<col width=\"91\" \/> <\/colgroup>\n<thead>\n<tr>\n<th style=\"text-align: center; vertical-align: middle;\" scope=\"col\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">CVE Identifier<\/span><\/p>\n<\/th>\n<th style=\"text-align: center; vertical-align: middle;\" scope=\"col\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Product<\/span><\/p>\n<\/th>\n<th style=\"text-align: center; vertical-align: middle;\" scope=\"col\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Version<\/span><\/p>\n<\/th>\n<th style=\"text-align: center; vertical-align: middle;\" scope=\"col\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">\u00a0Running\u00a0 On<\/span><\/p>\n<\/th>\n<th style=\"text-align: center; vertical-align: middle;\" scope=\"col\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">CVSSv3<\/span><\/p>\n<\/th>\n<th style=\"text-align: center; vertical-align: middle;\" scope=\"col\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Severity<\/span><\/p>\n<\/th>\n<th style=\"text-align: center; vertical-align: middle;\" scope=\"col\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Fixed Version<\/span><\/p>\n<\/th>\n<th style=\"text-align: center; vertical-align: middle;\" scope=\"col\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Workarounds<\/span><\/p>\n<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td style=\"text-align: center; vertical-align: middle; white-space: nowrap;\" rowspan=\"7\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">CVE-2021-22045<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">ESXi<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">7<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Any<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\"><a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:L\/AC:H\/PR:N\/UI:R\/S:C\/C:H\/I:H\/A:H\">7.7<\/a><\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Important<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Patch Pending<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\"><a href=\"https:\/\/kb.vmware.com\/s\/article\/87249\">KB87249<\/a><\/span><\/p>\n<\/td>\n<\/tr>\n<tr>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">ESXi<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">6.7<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Any<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">7.7<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Important<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">ESXi670-202111101-SG<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\"><a href=\"https:\/\/kb.vmware.com\/s\/article\/87249\">KB87249<\/a><\/span><\/p>\n<\/td>\n<\/tr>\n<tr>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">ESXi<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">6.5<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Any<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\"><a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:L\/AC:H\/PR:N\/UI:R\/S:C\/C:H\/I:H\/A:H\">7.7<\/a><\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Important<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">ESXi650-202110101-SG<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\"><a href=\"https:\/\/kb.vmware.com\/s\/article\/87249\">KB87249<\/a><\/span><\/p>\n<\/td>\n<\/tr>\n<tr>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Workstation<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">16.x<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Any<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\"><a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:L\/AC:H\/PR:N\/UI:R\/S:C\/C:H\/I:H\/A:H\">7.7<\/a><\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Important<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">16.2.0<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\"><a href=\"https:\/\/kb.vmware.com\/s\/article\/87206\">KB87206<\/a><\/span><\/p>\n<\/td>\n<\/tr>\n<tr>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Fusion<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">12.x<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">OS X<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\"><a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:L\/AC:H\/PR:N\/UI:R\/S:C\/C:H\/I:H\/A:H\">7.7<\/a><\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Important<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">12.2.0<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\"><a href=\"https:\/\/kb.vmware.com\/s\/article\/87207\">KB87207<\/a><\/span><\/p>\n<\/td>\n<\/tr>\n<tr>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">VMware Cloud Foundation (ESXi)<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">4.x<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Any<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\"><a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:L\/AC:H\/PR:N\/UI:R\/S:C\/C:H\/I:H\/A:H\">7.7<\/a><\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Important<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Patch Pending<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\"><a href=\"https:\/\/kb.vmware.com\/s\/article\/87249\">KB87249<\/a><\/span><\/p>\n<\/td>\n<\/tr>\n<tr>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">VMware Cloud Foundation (ESXi)<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">3.x<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Any<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\"><a href=\"https:\/\/www.first.org\/cvss\/calculator\/3.1#CVSS:3.1\/AV:L\/AC:H\/PR:N\/UI:R\/S:C\/C:H\/I:H\/A:H\">7.7<\/a><\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Important<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\">Patch Pending<\/span><\/p>\n<\/td>\n<td style=\"text-align: center; vertical-align: middle;\">\n<p dir=\"ltr\"><span style=\"font-size: 11px;\"><a href=\"https:\/\/kb.vmware.com\/s\/article\/87249\">KB87249<\/a><\/span><\/p>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>&nbsp;<\/p>\n<h2 dir=\"ltr\">Knotted But Still Exploitable<\/h2>\n<p>&nbsp;<\/p>\n<p dir=\"ltr\">The flaw allows an untrusted guest OS user to run code on the hypervisor; nevertheless, &#8220;an attacker would not have control over the data produced, making exploitation difficult.&#8221; A successful attacker can compromise the hypervisor&#8217;s host operating system.<\/p>\n<p>&nbsp;<\/p>\n<p dir=\"ltr\">A hypervisor is software that creates and runs virtual machines and governs how resources are shared among them (such as memory and processing). Taking control of a hypervisor can provide hackers with a direct path to any data or applications stored in the VMs it manages, as well as the ability to execute code or install files on those Virtual Machines.<\/p>\n<p>&nbsp;<\/p>\n<h2 dir=\"ltr\">ESXi: Users are High at Risk<\/h2>\n<p>&nbsp;<\/p>\n<p dir=\"ltr\">The ESXi hypervisor is an empty hypervisor that runs on a server and splits it into several virtual machines (VMs). Considering that there isn&#8217;t a fix for ESXi users, VMware seems to be a popular target for cybercriminals and ransomware gangs.<\/p>\n<p>&nbsp;<\/p>\n<p dir=\"ltr\">On January 10, 2022, researchers have noticed that AvosLocker&#8217;s newer malware versions now include capabilities for encrypting Linux computers, with a target on VMware ESXi virtual machines.<\/p>\n<p>&nbsp;<\/p>\n<h2 dir=\"ltr\">Mitigations: Disable Now!<\/h2>\n<p>&nbsp;<\/p>\n<p dir=\"ltr\">Vmware advises customers to turn down all CD-ROM\/DVD drives on all running virtual machines to avoid potential exploitation \u2014<\/p>\n<p>&nbsp;<\/p>\n<ol>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">Log in to a vCenter Server system using the vSphere Web Client.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">Right-click the virtual machine and click Edit Settings.<\/p>\n<\/li>\n<li dir=\"ltr\" aria-level=\"1\">\n<p dir=\"ltr\" role=\"presentation\">Select the CD\/DVD drive and uncheck &#8220;Connected&#8221; and &#8220;Connect at power on&#8221; and remove any attached ISOs.<\/p>\n<\/li>\n<\/ol>\n<p dir=\"ltr\" style=\"text-align: center;\"><strong>Worried about how susceptible your organization is to a ransomware attack?\u00a0<\/strong><\/p>\n<p dir=\"ltr\" style=\"text-align: center;\"><strong>Get a Ransomware Penetration Assessment done today!\u00a0<\/strong><\/p>\n<p dir=\"ltr\" style=\"text-align: center;\"><strong><a href=\"https:\/\/cybersecurityworks.com\/get-quote.php\" target=\"_blank\" rel=\"noopener\">Click here<\/a> to talk to us.\u00a0<\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"<p>VMware has published security fixes for its Workstation, Fusion, and ESXi products to address a heap-overflow vulnerability identified as CVE-2021-22045.<\/p>\n","protected":false},"author":1,"featured_media":14341,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"content-type":""},"categories":[80,83,123],"tags":[517,516,518,167,519,93,218,369,424,515],"acf":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/posts\/7448"}],"collection":[{"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/comments?post=7448"}],"version-history":[{"count":3,"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/posts\/7448\/revisions"}],"predecessor-version":[{"id":14354,"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/posts\/7448\/revisions\/14354"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/media\/14341"}],"wp:attachment":[{"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/media?parent=7448"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/categories?post=7448"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/tags?post=7448"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}