VMware Support Insider

VMware Skyline Advisor Pro Proactive Findings – January 2024 Edition


VMware Skyline Advisor Pro releases new proactive Findings every month. Findings are prioritized by trending issues in VMware Technical Support, issues raised through post escalation review, security vulnerabilities, issues raised from VMware engineering, and nominated by customers.

For the month of January, we released 60 new Findings. Of these, there are 37 Findings based on trending issues, 9 based on post escalation reviews, 1 based on VMSA, and 12 based on nominations. We picked a few of these Findings which stand out in this release and discussed them below.

Security Vulnerabilities

In VMSA-2024-0001, VMware Aria Automation (formerly vRealize Automation) updates address a Missing Access Control vulnerability (CVE-2023-34063). In Aria Automation Missing Access Control Vulnerability (CVE-2023-34063), an authenticated malicious actor may exploit this vulnerability leading to unauthorized access to remote organizations and workflows. This vulnerability is addressed in Aria Automation 8.16. There are post patches for Aria Automation 8.11.2, 8.12.2, 8.13.1, and 8.14.1 which we will work on adding to VMware Skyline Advisor Pro in the future.

  • Automation-CVE-2023-34063-VMSA#202401

Post Escalation Review

VMware Technical Support has developed a Post Escalation Review process. We review critical escalations which come into our Escalation Management team and determine steps to prevent these escalations in the future with other customers. One of the outcomes of this process is the creation of Skyline Findings. VMware Technical Support has developed a rigorous Post Escalation Review process to scrutinize critical escalations handled by our Escalation Management team. The primary objective is to analyze these escalations comprehensively, identify root causes, and formulate preventive measures. One of the outcomes of this process is the creation of Skyline Findings.

In KB#95965, in vSphere 8.0U2 Changed Block Tracking (CBT) files may become inconsistent leading to backups not capturing the correct data. This issue will only be seen if backups are taken after the VM disk is hot extended. Simply resizing a VM with the VM powered off will not cause this. This problem can happen with disks of all datastore types (VVOL, VMFS, NFS, vSAN). Engineering is aware of this issue and is actively working to resolve this issue. Please subscribe to the Knowledge Base Article to be notified when the fix is available.

  • vSphere-CBTInconsistent-KB#95965
    • vSphere 8.0 U2 CBT file corruption with resized VM disks.
    • https://kb.vmware.com/s/article/95965
    • CRITICAL

In KB#96065, On vCenter Server 8.0U2, when attempting to perform VM operations, the operation hangs and completes after an unknown amount of time or fails to complete. Due to case-insensitive handling of the vCenter Server’s FQDN in the destination URL by the Envoy sidecar proxy, when the vCenter Server hostnames are in upper case, calls to the VSM service hang. Engineering is aware of this issue and is actively working to resolve it. Please subscribe to the Knowledge Base Article to be notified when the fix is available.

  • vSphere-VMOperationsHang-KB#96065
    • VM operations hang due to case-insensitive handling of vCenter Server FQDN by the Envoy sidecar proxy.
    • https://kb.vmware.com/s/article/96065
    • MODERATE

In KB#96049, On vCenter Server 8.0U2, when attempting to perform VM operations, the operation hangs and completes after an unknown amount of time or fails to complete. The root cause of the problem is missing jar files from the classpath of the VSM service. Engineering is aware of this issue and is actively working to resolve this issue. Please subscribe to the Knowledge Base Article to be notified when the fix is available.

  • vSphere-expiredVSMAcct-KB#96049
    • VM operations hang due to expired VSM service account password.
    • https://kb.vmware.com/s/article/96049
    • MODERATE

To review all released Findings for the month of January and all current active VMware Skyline Findings please go to the VMware Skyline Findings Catalog.

Most Viewed Findings in Last 30 Days

Below are the most viewed Findings by users in Skyline Advisor Pro:

  1. vSphere-Memoryexceedshardlimit-KB#92858
  2. vSphere-VMmorethan3snapshots-KB#1025279
  3. vSphere-VMFSDiskspaceThinDisks-KB#1003412
  4. vSphere-VCFEsxNTPRule-KB#81647
  5. vSphere-BlackScreen-KB#90493
  6. vSphere-VMcrashVmotion-KB#91218
  7. vSphere-CVE-2023-34048-34056-VMSA#202323
  8. vSphere-CustomizeWindowsGuests-KB#1020716
  9. vSphere-vMotionJumboFrames-KB#2120640
  10. vSphere-CVE-2023-20900-VMSA#202319
  11. vSphere-VMsnapshotover7days-KB#1025279
  12. vSphere-VCFEsxRemoteSysLogRule-KB#81648
  13. vSphere-VMdirFailureState-KB#92962
  14. vSphere-VmUnresponsivememoryleak-KB#2077302
  15. vSphere-CVE-2023-34057-34058-VMSA#202324
  16. vSphere-EndpointCertExpiration-KB#2097936
  17. vSphere-SpectreMeltdown-VMSA#201804-2
  18. vSphere-StoragevMotion-KB#88957
  19. vSphere-VCSALogDiskSpace-KB#76563
  20. vSphere-L1TerminalFault-VMSA#201820-3



Source link