March Patch Tuesday warnings: Act fast to plug zero day holes in Windows, VMware | CSO Online

March’s Patch Tuesday requires urgent action for multiple zero-days. Broadcom warned about three actively exploited VMware vulnerabilities (ESXicape) allowing VM escape and hypervisor-level code execution. Microsoft patched six zero-days, six critical flaws, and a vulnerability with public exploit code. OpenSSH users must fix two vulnerabilities, including one undetected since 2014. Cisco addressed a credential exposure in Webex for BroadWorks, while Juniper patched a critical authentication bypass in Session Smart Routers.

*****
Written on