VMware security updates published for its AirWatch Agent that affected by critical remote code execution vulnerability.
VMware is a virtualization software which is installed on the physical server to allow for multiple virtual machines (VMs) to run on the same physical server.
This critical vulnerability discovered in VMware AirWatch Agent a division of virtualization vendor VMware.
It helps IT administrators deploy, secure and manage mobile devices, applications, and data, as well as Windows 10 and Apple Mac computers.
This Critical RCE vulnerability affects both VMware AirWatch Agent for Android (A/W Agent) & VMware AirWatch Agent for Windows Mobile (A/W Agent).
According to VMware, Android and Windows Mobile devices contain a remote code execution vulnerability in real time File Manager capabilities.
Also, this vulnerability leads to unauthorized creation and execution of files in the Agent sandbox also in other publicly accessible directories.
This RCE vulnerability leads to a remote attacker could exploit this vulnerability to take control of an affected system.
Users are recommended to update AirWatch Agent for Android 8.2 and AirWatch Agent for Windows Mobile 6.5.2 to mitigate the vulnerabilities.
Zohocorp, the company behind ManageEngine, has released a security update addressing a critical SQL injection…
A critical new vulnerability has been discovered in Citrix’s Virtual Apps and Desktops solution, which…
Sonatype, the company behind the popular Nexus Repository Manager, has issued security advisories addressing two…
Cybersecurity researchers have detected the active exploitation of a zero-day vulnerability in GeoVision devices, which…
A critical security flaw has been uncovered in certain TP-Link routers, potentially allowing malicious actors…
SilkSpecter, a Chinese financially motivated threat actor, launched a sophisticated phishing campaign targeting e-commerce shoppers…
