https://communities.vmware.com/t5/VMware-vCenter-Discussions/Multiple-Vulnerabilities-in-VMware-Products-Could-Allow-for/m-p/2974648#M48595 <P><STRONG>Hi,</STRONG></P><P><BR />I understand your point but what I'm saying it's that individual personal opinions (born of equally personal experiences) are not enough to determine whether or not a product version is suitable to be used in a production context like yours which is certainly different from mine or someone else's. Nothing more nothing less.</P><P><BR /><STRONG>Regards,</STRONG><BR /><STRONG>Ferdinando</STRONG></P> Mon, 26 Jun 2023 17:53:23 GMT Kinnison 2023-06-26T17:53:23Z https://communities.vmware.com/t5/VMware-vCenter-Discussions/Multiple-Vulnerabilities-in-VMware-Products-Could-Allow-for/m-p/2974605#M48590 <P>We are on 7.0 u3l. Per the links below we need to upgrade to 7.0 u3m. With 7.0 u3m just being released, is it stable and ready for production or do we need to let it bake longer before making the upgrade? I am always leery with security patches/upgrade that have been recently released.&nbsp;</P><P><A href="https://www.vmware.com/security/advisories/VMSA-2023-0014.html" target="_blank">https://www.vmware.com/security/advisories/VMSA-2023-0014.html</A></P><P><STRONG><A href="https://www.cisecurity.org/advisory/multiple-vulnerabilities-in-vmware-products-could-allow-for-arbitrary-code-execution_2023-069" target="_blank">https://www.cisecurity.org/advisory/multiple-vulnerabilities-in-vmware-products-could-allow-for-arbitrary-code-execution_2023-069</A></STRONG></P><P><STRONG>SYSTEMS AFFECTED:</STRONG></P><UL><LI>VMware - VMware vCenter Server (vCenter Server) versions prior to 8.0 U1b</LI><LI>VMware - VMware vCenter Server (vCenter Server) versions prior to 7.0 u3m</LI><LI>VMware - VMware Cloud Foundation (vCenter Server) versions prior to 7.0 U3m, 8.0 U1</LI></UL> Mon, 26 Jun 2023 14:08:00 GMT https://communities.vmware.com/t5/VMware-vCenter-Discussions/Multiple-Vulnerabilities-in-VMware-Products-Could-Allow-for/m-p/2974605#M48590 kpubmcc 2023-06-26T14:08:00Z https://communities.vmware.com/t5/VMware-vCenter-Discussions/Multiple-Vulnerabilities-in-VMware-Products-Could-Allow-for/m-p/2974622#M48592 <P><STRONG>Hi,</STRONG></P><P><BR />I could be wrong but in my opinion it will be quite difficult that you will be able to find an unambiguous answer in the context of a forum. In the end it just depends on your / your company policies for handling information security related matter and consequently how to act and when.</P><P><BR /><STRONG>Regards,</STRONG><BR /><STRONG>Ferdinando</STRONG></P> Mon, 26 Jun 2023 15:30:23 GMT https://communities.vmware.com/t5/VMware-vCenter-Discussions/Multiple-Vulnerabilities-in-VMware-Products-Could-Allow-for/m-p/2974622#M48592 Kinnison 2023-06-26T15:30:23Z https://communities.vmware.com/t5/VMware-vCenter-Discussions/Multiple-Vulnerabilities-in-VMware-Products-Could-Allow-for/m-p/2974626#M48593 <LI-SPOILER>really? I would expect that with the release of the vulnerability notice last week, several entities would be early adopters and have already applied the update to 7.0 u3m. I understand that it may take time for bugs to show up for that version, but I am asking for any word on initial stability issues since it has just been released.</LI-SPOILER> Mon, 26 Jun 2023 15:41:21 GMT https://communities.vmware.com/t5/VMware-vCenter-Discussions/Multiple-Vulnerabilities-in-VMware-Products-Could-Allow-for/m-p/2974626#M48593 kpubmcc 2023-06-26T15:41:21Z https://communities.vmware.com/t5/VMware-vCenter-Discussions/Multiple-Vulnerabilities-in-VMware-Products-Could-Allow-for/m-p/2974648#M48595 <P><STRONG>Hi,</STRONG></P><P><BR />I understand your point but what I'm saying it's that individual personal opinions (born of equally personal experiences) are not enough to determine whether or not a product version is suitable to be used in a production context like yours which is certainly different from mine or someone else's. Nothing more nothing less.</P><P><BR /><STRONG>Regards,</STRONG><BR /><STRONG>Ferdinando</STRONG></P> Mon, 26 Jun 2023 17:53:23 GMT https://communities.vmware.com/t5/VMware-vCenter-Discussions/Multiple-Vulnerabilities-in-VMware-Products-Could-Allow-for/m-p/2974648#M48595 Kinnison 2023-06-26T17:53:23Z