VMware security updates  - VMware security updates - VMware Security Updates for Critical Remote Code Execution Vulnerability

updates published for its AirWatch Agent that affected by critical remote code .

VMware is a virtualization software which is installed on the physical server to allow for multiple virtual machines (VMs) to run on the same physical server.

This critical vulnerability discovered in VMware AirWatch Agent a division of virtualization vendor VMware.

It helps IT administrators deploy, secure and manage mobile devices, applications, and data, as well as Windows 10 and computers.

AirWatch Agent RCE Affected Platform

This Critical RCE vulnerability affects both VMware AirWatch Agent for Android (A/W Agent) & VMware AirWatch Agent for Windows Mobile (A/W Agent).

According to VMware, Android and Windows Mobile devices contain a remote code execution vulnerability in real time File Manager capabilities.

Also, this vulnerability leads to unauthorized creation and execution of files in the Agent sandbox also in other publicly accessible directories.

- vmware - VMware Security Updates for Critical Remote Code Execution Vulnerability

This RCE vulnerability leads to a remote attacker could exploit this vulnerability to take control of an affected system.

Mitigations

Users are recommended to update AirWatch Agent for Android 8.2 and AirWatch Agent for Windows Mobile 6..2 to mitigate the vulnerabilities.



Source link

LEAVE A REPLY

Please enter your comment!
Please enter your name here