VMware vCenter Server堆溢出漏洞 CVE-2024-38812

发布时间:2024-10-23

【紧急漏洞通告】

  近日,发现最新漏洞威胁:VMware vCenter Server堆溢出漏洞 CVE-2024-38812 (二次通告)

【漏洞详情】

  vCenter Server中的DCE(Distributed Computing Environment)RPC协议实现中存在堆溢出漏洞。拥有对vCenter Server网络访问权限的恶意攻击者可以通过发送精心设计的网络数据包来触发此漏洞。攻击者利用该漏洞可执行任意代码,导致服务器失陷。鉴于vCenter Server在历史补丁中未完全修复该漏洞,10月21日VMware官方发布了最新的补丁更新了响应矩阵,完全解决了该问题。

  目前受影响的VMware-vCenter版本:

  VMware vCenter Server 8.0 < 8.0 U3d

  VMware vCenter Server 8.0 < 8.0 U2e

  VMware vCenter Server 7.0 < 7.0 U3t

  VMware Cloud Foundation 5.x < 8.0 U3d

  VMware Cloud Foundation 5.x < 8.0 U2e

  VMware Cloud Foundation 4.x < 7.0 U3t

官方解决方案:

  官方下载链接及文档地址:

  VMware vCenter Server 8.0 U3d:

  https://support.broadcom.com/web/ecx/solutiondetails?patchId=5574

  https://docs.vmware.com/en/VMware-vSphere/8.0/rn/vsphere-vcenter-server-80u3d-release-notes/index.html

  VMware vCenter Server 8.0 U2e:

  https://support.broadcom.com/web/ecx/solutiondetails?patchId=5531

  https://docs.vmware.com/en/VMware-vSphere/8.0/rn/vsphere-vcenter-server-80u2e-release-notes/index.html

  VMware vCenter Server 7.0 U3t:

  https://support.broadcom.com/web/ecx/solutiondetails?patchId=5580

  https://docs.vmware.com/en/VMware-vSphere/7.0/rn/vsphere-vcenter-server-70u3t-release-notes/index.html

  Cloud Foundation 5.x/4.x:

  https://knowledge.broadcom.com/external/article?legacyId=88287