Source |
Vuln GCP |
Identifiant |
8296104 |
Date de publication |
2022-12-21 17:12:56 (vue: 2022-12-30 21:12:37) |
Titre |
GCP-2021-023 |
Texte |
Published:Description
Description
Severity
Notes
Per VMware security advisory VMSA-2021-0020, VMware received reports of multiple vulnerabilities in vCenter. VMware has made updates available to remediate these vulnerabilities in affected VMware products. We have already applied the patches provided by VMware for the vSphere stack to Google Cloud VMware Engine per the VMware security advisory. This update addresses the security vulnerabilities described in CVE-2021-22005, CVE-2021-22006, CVE-2021-22007, CVE-2021-22008, and CVE-2021-22010. Other non-critical security issues will be addressed in the upcoming VMware stack upgrade (per the advance notice sent in July, more details will be provided soon on the specific timeline of the upgrade). VMware Engine impact Based on our investigations, no customers were found to be impacted. What should I do? Because VMware Engine clusters are not affected by this vulnerability, no further action is required.
Critical
VMSA-2021-0020
CVE-2021-22005
CVE-2021-22006
CVE-2021-22007
CVE-2021-22008
CVE-2021-22010
|
Envoyé |
Oui |
Condensat |
0020 023 2021 22005 22006 22007 22008 22010 action addressed addresses advance advisory affected already and applied are available based because cloud clusters critical customers cve described description details engine for found further gcp google has have impact impacted investigations issues july made more multiple not notes notice other our patches per products provided published:description received remediate reports required security sent severity should soon specific stack the these this timeline upcoming update updates upgrade vcenter vmsa vmware vsphere vulnerabilities vulnerability were what will |
Tags |
|
Stories |
|
Notes |
★★★
|
Move |
|