Category Archives: vmware

VMware acquires Nyansa to improve SD-WAN capabilities

VMware’s appetite for acquisitions hasn’t waned since it acquired Pivotal last summer for $2.7 billion, and this week announced its intention to buy network analytics software provider Nyansa.

For an undisclosed sum, VMware indicated Jan. 21 to acquire Nyansa to bolster its network visibility and monitoring capabilities by combining VMware SD-WAN by VeloCloud with Nyansa’s cloud-based AIOps platform.

Also:

Nyansa adds 10 new channel partners to partner program

Nyansa launches network analytics solutions, searches for new Canadian partners to distribute them

The Nyansa platform’s ability to display network telemetry from multiple hardware vendors in a single could compete directly with other monitoring tools such as Cisco Prime, SolarWinds and Aruba Airwave.

“Abe and his team have done a fantastic job building a highly differentiated solution that meets a real customer pain point,” wrote Sanjay Uppal, vice-president and general manager of the VeloCloud business unit for VMware, in a blog post.

Abe Ankumah, chief executive officer and co-founder of Nyansa, wrote in a separate blog post that Nyansa Voyance will extend the VMware portfolio further into the enterprise campus and branch by adding software capabilities on Wi-Fi and LAN devices, as well as analytics tools to the VMware data centre portfolio.

The two companies, added Ankumah, are aligned on more than just the technologies involved in this strategy.

“Over the years at Nyansa, we’ve obsessed about building a customer-first, radically candid, and openly communicative culture that facilitates innovation and learning. In all our interactions thus far, the VMware team has embodied similar values that will allow the Nyansa team to continue to thrive, while also leveraging the resources and scale of VMware,” he wrote.

The deal is expected to close between February and March.

VMware addresses flaws in VMware Tools and Workspace ONE SDK

VMware has released security updates to address a local privilege escalation vulnerability in VMware Tools version 10 for Windows.

VMware has released VMware Tools 11.0.0 that addresses a local privilege escalation issue in Tools 10.x.y tracked as CVE-2020-3941. The issue, classified as a race condition flaw that could be exploited by an attacker to access the guest virtual machine to escalate privileges.

“A malicious actor on the guest VM might exploit the race condition and escalate their privileges on a Windows VM. This issue affects VMware Tools for Windows version 10.x.y as the affected functionality is not present in VMware Tools 11.” reads the advisory published by the company.

The vulnerability has been assigned an important severity rating and a CVSS score of 7.8. The company also suggests a workaround in case users cannot upgrade their version.

“However, if upgrading is not possible, exploitation of this issue can be prevented by correcting the ACLs on C:\ProgramData\VMware\VMware CAF directory in the Windows guests running VMware Tools 10.x.y versions. In order to correct ACLs for this directory, remove all write access permissions for Standard User from the directory,” reads Workaround for VMware Tools for Windows security vulnerability (CVE-2020-3941) (76654).

Recently the virtualization giant also disclosed an information disclosure issue, tracked as CVE-2020-3940, that affects Workspace ONE SDK and dependent iOS and Android mobile applications.

Vulnerable applications do not properly handle certificate verification failures if SSL pinning is enabled in the UEM Console.

“A sensitive information disclosure vulnerability in the VMware Workspace ONE SDK was privately reported to VMware.” states the security advisory.

“A malicious actor with man-in-the-middle (MITM) network positioning between an affected mobile application and Workspace ONE UEM Device Services may be able to capture sensitive data in transit if SSL Pinning is enabled.” 

The vulnerability has been assigned an important severity rating and a CVSS score of 6.8.

The list of vulnerable applications and SDKs include Workspace ONE Boxer, Content, Intelligent Hub, Notebook, People, PIV-D, Web, and the SDK plugins for Apache Cordova and Xamarin.

Pierluigi Paganini

(SecurityAffairs – VM, hacking)

The post VMware addresses flaws in VMware Tools and Workspace ONE SDK appeared first on Security Affairs.