Threat posed by new VMware hyperjacking vulnerabilities is hard to overstate
1 min read
Summary
Three critical vulnerabilities have been found in virtual-machine products from VMware that give potential hackers unusually broad access to internal networks.
The attack method, known as hyperjacking, hypervisor attack or virtual machine escape, involves breaking out of a customer’s virtual machine (VM) in order to take control of the hypervisor that apportions each VM.
From there, an attacker can access the VMs of other customers, environments that are typically used to host internal networks.
Security researcher Kevin Beaumont said on Mastodon: “If you can escape to the hypervisor you can access every system.
All bets are off as a boundary is broken.”
VMware has said it has evidence the vulnerabilities are already being exploited.
