CISA added VMware vCenter vulnerability CVE-2024-37079 to its KEV list after confirmed in-the-wild exploitation, urging organizations to apply patches

The Tidyverse Blog offers insights, tutorials, and updates on the Tidyverse, a collection of R packages for data science and statistical computing. Covering topics such as data manipulation, visualization, and analysis, the blog provides resources for R developers looking to leverage the power of the Tidyverse for their data projects. Developers can learn how to use Tidyverse packages effectively to clean, transform, and analyze data in R.

The Hacker News

CISA added VMware vCenter Server vulnerability CVE-2024-37079 to its Known Exploited Vulnerabilities catalog after confirming active exploitation in the wild. The critical flaw (CVSS 9.8) is a heap overflow in the DCE/RPC protocol implementation that enables remote code execution via specially crafted network packets. Originally patched by Broadcom in June 2024, the vulnerability can be chained with other flaws to achieve unauthorized root access to ESXi. Federal agencies must apply patches by February 13, 2026.

CISA Adds Actively Exploited VMware vCenter Flaw CVE-2024-37079 to KEV Catalog