VMware Skyline Advisor Pro releases new proactive Findings every month. Findings are prioritized by trending issues in VMware Technical Support, issues raised through post escalation review, security vulnerabilities, issues raised from VMware engineering, and nominated by customers.
For the month of December, we released 56 new Findings. Of these, there are 35 Findings based on trending issues, 3 based on post escalation reviews, 2 based on VMSA, and 16 based on nominations. We picked a few of these Findings from each of these categories which stand out in this release.
Security Vulnerabilities
In VMSA-2023-0021, VMware Aria Operations for Logs addresses Authentication Bypass Vulnerability (CVE-2023-34051) and Deserialization Vulnerability (CVE-2023-34052). In Authentication Bypass Vulnerability (CVE-2023-34051), an unauthenticated, malicious actor can inject files into the operating system of an impacted appliance, which can result in remote code execution. In Deserialization Vulnerability (CVE-2023-34052) a malicious actor with non-administrative access to the local system can trigger the deserialization of data which could result in authentication bypass. Both vulnerabilities are addressed in Aria Operations for Logs 8.14.
- OPLOGS-CVE-2023-34051-34052-KB#202321
VMware Technical Support Trending Issues
VMware Technical Support trending issues are KBs that have solved many SRs and/or are viewed many times.
In KB numbers 88610, 91692, 89585, and 85832 Aria Operations has the recommended maximums of objects and metrics for node sizes. We created Skyline Rules for Aria Operations 8.6.x, 8.10, and 8.12 with multi-node and single-node configuration. There are two Findings for each KB, one for single node with metrics and objects for each node size and one for multi-node configurations with metrics and objects for each node size. If you are alerted on this Finding please consider increasing your Aria Operations node size.
Finding IDs
- OPERATIONS-MetricSizing-KB#85832
- OPERATIONS-ObjectSizing-KB#85832
- OPERATIONS-ObjectSizing-KB#89585
- OPERATIONS-MetricSizing-KB#89585
- OPERATIONS-MetricSizing-KB#88610
- OPERATIONS-ObjectSizing-KB#88610
- OPERATIONS-ObjectSizing-KB#91692
- OPERATIONS-MetricSizing-KB#91692
KBs
- https://kb.vmware.com/s/article/85832
- https://kb.vmware.com/s/article/89585
- https://kb.vmware.com/s/article/88610
- https://kb.vmware.com/s/article/91692
Post Escalation Review
VMware Technical Support has developed a Post Escalation Review process. We review critical escalations which come into our Escalation Management team and determine steps to prevent these escalations in the future with other customers. One of the outcomes of this process is the creation of Skyline Findings. VMware Technical Support has developed a rigorous Post Escalation Review process to scrutinize critical escalations handled by our Escalation Management team. The primary objective is to analyze these escalations comprehensively, identify root causes, and formulate preventive measures. One of the outcomes of this process is the creation of Skyline Findings.
In KB#92962, a vCenter server that started at version 6.5 or below and has now been upgraded to 8.0U1 VMdir enters a failure state. This occurs when the domain functional level (DFL) of the vCenter has an unexpected value other than 4. vCenters that have been upgraded since version 6.5 will have a DFL of 1. vCenter servers of version 7.0+ should have a DFL value of 4. This issue is resolved in vCenter Server 8.0 Update 2.
- vSphere-VMdirFailureState-KB#92962
To review all released Findings for the month of December and all current active VMware Skyline Findings please go to the VMware Skyline Findings Catalog.
Most Viewed Findings in Last 30 Days
Below are the most viewed Findings by users in Skyline Advisor Pro:
- vSphere-VMmorethan3snapshots-KB#1025279
- vSphere-VCFEsxNTPRule-KB#81647
- vSphere-CustomizeWindowsGuests-KB#1020716
- NSXv-EdgeSSH100percentdiskusage-KB#2150467
- vSphere-vMotionJumboFrames-KB#2120640
- vSphere-PSODIPv6deactivated-KB#2150794
- vSphere-VCFEsxRemoteSysLogRule-KB#81648
- vSphere-VMsnapshotover7days-KB#1025279
- vSphere-VmUnresponsivememoryleak-KB#2077302
- vSphere-SpectreMeltdown-VMSA#201804-2
- vSphere-StoragevMotion-KB#88957
- vSphere-CVE-2022-31676-VMSA#202224
- vSphere-Portsexhausted-KB#54459
- vSAN-Diskfailures-KB#2108691
- vSphere-EndpointCertExpiration-KB#2097936
- vSphere-vmsupportCNAFCoELinkDown-KB#2142226
- vSphere-L1TerminalFault-VMSA#201820-3
- vSphere-CVE-2022-22977-VMSA#202215
- vSphere-VCSALogDiskSpace-KB#76563
- vSphere-over1TBvm-KB#79520
- vSphere-opentools-31676-VMSA#202224
- vSphere-CVE-2021-21999-VMSA#202113
- vSphere-PSODPktListPop-KB#87489
- NSXT-EndpointCertExpiration-KB#89921
- vSphere-PSODFastSlabAlloc-KB#90052