VMware product updates available now to enable Hypervisor-Specific Mitigations, Hypervisor-Assisted Guest Mitigations, and Operating System-Specific Mitigations for Microarchitectural Data Sampling (MDS) Vulnerabilities (CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, and CVE-2019-11091)

Affected Products

Product Version Running On CVE Identifier CVSSv3 Severity Fixed Version Workarounds Additional Documentation
vCenter Server1 6.7 Any N/A N/A N/A 6.7 U2a None KB67577
vCenter Server1 6.5 Any N/A N/A N/A 6.5 U2g None KB67577
vCenter Server1 6.0 Any N/A N/A N/A 6.0 U3i None KB67577
ESXi 6.7 Any CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2019-11091
6.5 Moderate ESXi670-201905401-BG
ESXi670-201905402-BG2
ESXi670-201905403-BG
None KB67577
ESXi 6.5 Any CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2019-11091
6.5 Moderate ESXi650-201905401-BG
ESXi650-201905402-BG2
None KB67577
ESXi 6.0 Any CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2019-11091
6.5 Moderate ESXi600-201905401-BG
ESXi600-201905402-BG2
None KB67577
Workstation 15.x Any CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2019-11091
6.5 Moderate 15.1.0 None KB68025
Fusion 11.x Any CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2019-11091
6.5 Moderate 11.1.0 None KB68025

 

For more details, visit the following security advisory page:

https://www.vmware.com/security/advisories/VMSA-2019-0008.html