VMware product updates available now to enable Hypervisor-Specific Mitigations, Hypervisor-Assisted Guest Mitigations, and Operating System-Specific Mitigations for Microarchitectural Data Sampling (MDS) Vulnerabilities (CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, and CVE-2019-11091)
Affected Products
| Product | Version | Running On | CVE Identifier | CVSSv3 | Severity | Fixed Version | Workarounds | Additional Documentation |
| vCenter Server1 | 6.7 | Any | N/A | N/A | N/A | 6.7 U2a | None | KB67577 |
| vCenter Server1 | 6.5 | Any | N/A | N/A | N/A | 6.5 U2g | None | KB67577 |
| vCenter Server1 | 6.0 | Any | N/A | N/A | N/A | 6.0 U3i | None | KB67577 |
| ESXi | 6.7 | Any | CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091 |
6.5 | Moderate | ESXi670-201905401-BG ESXi670-201905402-BG2 ESXi670-201905403-BG |
None | KB67577 |
| ESXi | 6.5 | Any | CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091 |
6.5 | Moderate | ESXi650-201905401-BG ESXi650-201905402-BG2 |
None | KB67577 |
| ESXi | 6.0 | Any | CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091 |
6.5 | Moderate | ESXi600-201905401-BG ESXi600-201905402-BG2 |
None | KB67577 |
| Workstation | 15.x | Any | CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091 |
6.5 | Moderate | 15.1.0 | None | KB68025 |
| Fusion | 11.x | Any | CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091 |
6.5 | Moderate | 11.1.0 | None | KB68025 |
For more details, visit the following security advisory page:
https://www.vmware.com/security/advisories/VMSA-2019-0008.html