<ul><li>VMware failed to fully address a remote code execution flaw, tracked as CVE-2024-38812, in its vCenter Server platform.</li><li>The vulnerability is a heap-overflow vulnerability that resides in the implementation of the DCERPC protocol.</li><li>During a hacking contest in China, the flaw was demonstrated, indicating possible exploitation.</li><li>VMware has updated its advisory and released new patches to fully address the vulnerability.</li></ul>

VMware failed to fully address vCenter Server RCE flaw CVE-2024-38812

Discover more