Second vSphere vulnerability announced in less than a week…on the bright side, the same patch for the previous vulnerability (VMSA-2022-0030) for vSphere 7.x addresses this vulnerability too!
If you are using any of the products below, please proceed to apply the patch or workaround before it’s too late!
- VMware vSphere or ESXi
- VMware Workstation Pro / Player (Workstation)
- VMware Fusion Pro / Fusion (Fusion)
- VMware Cloud Foundation (VCF)
Workaround: Remove USB controllers from all Virtual Machines
Advisory ID VMSA-2022-0033 released on 12-12-13
Official Advisory link here
No workarounds available, simply upgrade the version of vSphere, Workstation, Fusion and VCF accordingly.