A vulnerability has been found in VMware HCX, allowing an attacker to remotely execute arbitrary code. Affected systems include HCX versions 4.10
x prior to 4.10.1, 4.9.x prior to 4.9.2, and 4.8.x prior to 4.8.3. Users are advised to refer to the vendor's security bulletin for patches. The CVE reference is CVE-2024-38814. The bulletin VMware 25019 issued on October 16, 2024 provides more details. This vulnerability poses a risk of arbitrary code execution and immediate action is recommended to mitigate the threat. https://www.cert.ssi.gouv.fr/avis/CERTFR-2024-AVI-0896/