U.S. CISA adds a flaw in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog
ID: 822116f9-492f-5371-b02c-62b67c4b5e6b
STIX ID: report--822116f9-492f-5371-b02c-62b67c4b5e6b
Feed Name: Security Affairs
Threat Score
CISA added CVE-2024-37079, a critical (CVSS 9.8) heap-overflow in Broadcom/VMware vCenter Server's DCERPC implementation, to its Known Exploited Vulnerabilities catalog after Broadcom confirmed exploitation in the wild; VMware/Broadcom released patches and federal agencies are required to remediate by February 13, 2026.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.