VMware Security Advisories in vSphere Health

VMware Security Advisories in vSphere Health

This post was originally published on this site ---

Determining what VMware products in your datacenter have been patched for new or existing vulnerabilities can be tedious at times. What if your vSphere environment as able to do this for you without much effort? Well, look no further than vSphere Health. vSphere Health’s (vSphere Health will be renamed to Skyline Health in a future release) newest health checks are now not only looking out for your vSphere environment’s health but possible security-related vulnerabilities in vCenter Server and ESXi too.

VMware Security Advisories in vSphere Health

New to vSphere Health (vSphere 6.7U1 and higher) comes the ability to scan your vSphere environment for security vulnerabilities that are reported in VMware products and documented on the VMware Security Advisories [https://www.vmware.com/security/advisories.html] online listings page. Customers are now able to quickly see, via vSphere Health, if vCenter Server or ESXi have any applicable Security Advisories to be aware of.

vSphere Health

In the past, a bit more effort was required to discover such advisories and vulnerabilities. It meant visiting the VMware Security Advisories page to find out what security vulnerabilities had been reported in VMware products and then cross-referencing them to the versions deployed in a customer datacenter. Next may have involved some research to find what patch level or update would resolve the discovered vulnerability.

Security Health Checks

Today this process has become quite easy by simply leveraging vSphere Health. Within the vSphere Client, and while selecting vCenter Server, we can view the Security Health Checks that relate to the installed versions of vCenter Server or ESXi and quickly see any detected Security Advisories. As shown in the demo below, important details are listed such as; Security Advisory (name/number of advisory), Health, CVSSv3 (Common Vulnerability Scoring System; v3.x standard), and Resolution Patch.

 

Columns contain important information, Security Advisory maps to the VMSA advisory number (ie; VMSA-2019-0013), Health is either yellow or green if an advisory is applied yet or not, CVSSv3 stands for Common Vulnerability Scoring System version 3 a term used for scoring the severity of software vulnerabilities, and Resolution Patch which displays the version of vCenter Server or ESXi that includes the VMSA security advisory. This simple table view enables customers to not only be alerted to a particular security advisory, but also be shown its name, severity, and solution to that advisory.

VMware Security Advisories in vSphere Health

 

CVSS scores are often used as a standard measurement for calculating the severity of a vulnerability as well as a way to prioritize remediation efforts when patching affected systems. The Common Vulnerability Scoring System supports both version 2 (v2.0) and version 3 (v3.x) score standards. Understanding these severity rankings or score ranges can be helpful in coordinating remediation activities. This chart may come in handy during those exercises.

VMSA CVSS v3.0 Ratings

Closing

To learn more about vSphere Health, vSphere Security, or VMware Security Advisories please visit the below resources.

 

Take our vSphere 6.7: Getting Started Hands-On Lab here, and our vSphere 6.7: Advanced Topics Hands-On Lab here!

 

The post VMware Security Advisories in vSphere Health appeared first on VMware vSphere Blog.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.