NSA warns of VMware vulnerability
The NSA warns that Russian government-sponsored attackers are exploiting a serious VMware vulnerability. This is the second NSA warning related to government-sponsored Russian activities in 2020. An analysis by Satnam Narang, the Staff Research Engineer, Security Response at Tenable. The vulnerability was reported to VMware by the NSA, which published details in a security advisory, VMSA-23-2020, on November 0027.2rd. At this point, no patches were available, although VMware provided a number of fixes. The analysis CVE-2020-4006 is a security vulnerability caused by command injection in the administrative configurator component in ...