A critical security warning for all Broadcom VMware vCenter users! The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has just added a severe vulnerability, CVE-2024-37079, to its Known Exploited Vulnerabilities (KEV) catalog. This flaw, with a CVSS score of 9.8, is actively being exploited in the wild, and it's time to take action!
The Threat: A Heap Overflow Vulnerability
CVE-2024-37079 is a heap overflow issue in the DCE/RPC protocol implementation. This means that a malicious actor with network access to vCenter Server could potentially execute remote code by sending a specially crafted network packet. It's a serious threat, and Broadcom resolved it in June 2024, along with another similar vulnerability, CVE-2024-37080.
But here's where it gets controversial: Chinese cybersecurity researchers Hao Zheng and Zibo Li from QiAnXin LegendSec discovered a set of four vulnerabilities in the DCE/RPC service. They presented their findings at Black Hat Asia in 2025, revealing that these flaws could be chained together to achieve unauthorized remote root access and control over ESXi.
The Impact and Unknowns
While we know about the potential impact of these vulnerabilities, there are still many unknowns. We don't yet understand how CVE-2024-37079 is being exploited, who the threat actors might be, or the scale of these attacks. However, Broadcom has officially confirmed that the vulnerability is being abused in the wild, leaving no room for doubt.
Action Required
Given the active exploitation, Federal Civilian Executive Branch (FCEB) agencies are mandated to update to the latest version of the software by February 13, 2026, to ensure optimal protection. This is a critical step to mitigate the risk of further exploitation.
Stay Informed, Stay Secure
This article highlights the importance of staying updated with the latest security advisories and patches. To ensure you don't miss out on exclusive content like this, follow us on Google News, Twitter, and LinkedIn. Stay tuned for more insights into the ever-evolving world of cybersecurity!
And this is the part most people miss: cybersecurity is an ongoing battle, and staying informed is your best defense. Don't hesitate to share your thoughts and experiences in the comments below. Are you taking the necessary steps to secure your systems? What measures do you think are crucial in the face of such threats?
