VMware's hypervisors have been found to have four significant flaws, with the most severe ones allowing a malicious actor with local administrative privileges on a virtual machine to execute code outside the guest. VMware has urged an emergency change to address these vulnerabilities, which affect its Workstation, Fusion, and ESXi hypervisors. The flaws were discovered by researchers at the Tianfu Cup Pwn Contest, and VMware has provided workarounds while acknowledging potential challenges in implementing them at scale.
VMware has released patches for critical vulnerabilities affecting VMware ESXi, Workstation, Fusion, and Cloud Foundation products, including out-of-support versions, that allow hackers to escape sandbox and hypervisor protections. The vulnerabilities, rated as severe, could allow an attacker with local administrative privileges to execute code on the host machine. VMware is urging customers to apply the patches and has provided workarounds, while also stating that it is not aware of any active exploitation of the vulnerabilities.
PS5 hacker SpecterDev has shared details about early versions of the PS5 Hypervisor, which is responsible for protecting the console's firmware and kernel. Earlier iterations of the Hypervisor were found to be running as part of the kernel, potentially making them more vulnerable to attacks. The smaller size of the PS5 Hypervisor suggests that Sony aimed for a smaller attack surface to ensure better security. Breaking the Hypervisor is seen as crucial for further opening up the PS5, but it remains a challenge for hackers.
