[PVE-User] Is Proxmox VE vulnerable to ransomware like VMware vSphere?

Stefan proxmox at qwertz1.com
Fri Jun 23 18:57:41 CEST 2023


Hi,

I'm not sure which VMware exploit you're referring, but I think you mean the OpenSLP exploit.
For that automated exploit one needs to not install patches + having management services access via WAN.
So yes, ANY system connected to the internet is vulnerable in that sense, only the attack surface can be minimized by e.g. having an isolated management network where those services are accessible.

Stefan

Am 23. Juni 2023 16:27:51 MESZ schrieb Turritopsis Dohrnii Teo En Ming <tdtemccnp at gmail.com>:
>Subject: Is Proxmox VE vulnerable to ransomware like VMware vSphere?
>
>Good day from Singapore,
>
>Recently, VMware vSphere has come under the spotlight because tens of
>thousands of VMware vSphere installations are vulnerable to
>ransomware. Ransomware gangs are actively targeting VMware vSphere. Is
>Proxmox VE vulnerable to ransomware like VMware vSphere?
>
>Please advise. Thank you.
>
>Regards,
>
>Mr. Turritopsis Dohrnii Teo En Ming
>Targeted Individual in Singapore
>Blogs:
>https://tdtemcerts.blogspot.com
>https://tdtemcerts.wordpress.com
>GIMP also stands for Government-Induced Medical Problems.
>
>_______________________________________________
>pve-user mailing list
>pve-user at lists.proxmox.com
>https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-user
>


More information about the pve-user mailing list