VMware Skyline releases new Proactive Findings every month. Findings are prioritized by trending issues in VMware Support, issues raised through Post Escalation review, Security vulnerabilities, and issues raised from VMware engineering, and customers.
For the month of January, we released 28 new Findings. Of these, there are 14 Findings based on trending issues, 12 based on VMSAs, and 2 based on post escalation reviews. We picked a few Findings from each of these categories which stand out in this release.
Multiple products impacted by remote code execution vulnerabilities via Apache Log4j (CVE-2021-44228, CVE-2021-45046). These CVEs have a score of 10 and are recorded in VMSA-2021-0028. Skyline Advisor Pro has 7 findings which cover this VMSA for vSphere, Horizon, NSX-T, NSX-v, vRealize Operations, vRealize Automation and VMware Cloud Foundation. These Findings cover the required updates for the VMware products and not the workarounds noted. For details on Log4j please go to https://blogs.vmware.com/vsphere/2021/12/vmsa-2021-0028-log4j-what-you-need-to-know.html.
- Finding ID: (vSphere,NSXv,NSXT,vROPS,VRA,SDDC)-Log4jremotecodeexe-VMSA#202128
- Description: Multiple products impacted by remote code execution vulnerabilities via Apache Log4j (CVE-2021-44228, CVE-2021-45046)
- Resolution: This vulnerability is remediated with product versions found in the VMSA link.
- Helpful Link: https://www.vmware.com/security/advisories/VMSA-2021-0028.html
- Severity: Critical
VMware Support Trending Issues
VMware Support trending issue are KBs that have solved a large number of SRs and/or viewed a large number of times.
In KB 86191, Customers who upgraded to vCenter 7.0 U3 are unable to successfully enable High Availability on their vSphere Clusters. This issue occurs when both the i40en and i40enu VIBs for the inbox Intel network driver are installed on the host. This issue is resolved in vSphere ESXi 7.0 U3e. To work around this issue, remove the i40enu vib on the affected hosts.
- Finding ID: vSphere-HAUninitialized-KB#86191
- Description: After update to ESXi 7.0 Update 3 vSphere HA fails to enable.
- Resolution: This issue is resolved in VMware ESXi 7.0 Update 3c (build number 19193900)
- Helpful Link: https://kb.vmware.com/s/article/86191
- Severity: Moderate
Post Escalation Review
VMware Support has developed a Post Escalation Review process. We review critical escalations which come into our Escalation management team and determine steps to prevent these escalations in the future with other customers. One of the outcomes of this process is the creation of Skyline Findings.
In KB 83530, GS Escalation where customer was unable to complete their ESXi upgrade to 6.7 as when they attempt to vMotion to an ESXi 6.7 host, the host starts to “slow down” when there are more than 130 VMs on it, the larger the number of running VMs on it, the slower vMotion proceeds, until a certain moment vMotion is not possible anymore and results in a general error during the vMotion process.
- Description: vMotion to 6.7 host that has too many VMs is extremely slow and usually fails at 18%
- Resolution: This issue is resolved in VMware ESXi 6.7 Patch 06 (build number 18828794)
- Helpful Link: https://kb.vmware.com/s/article/86010
- Severity: Moderate
To review all released Findings for the month of November and all current active VMware Skyline Findings please go to the VMware Skyline Findings Catalog.
Top 10 Most Viewed Findings in Last 30 Days
Below are the most viewed Findings by users in Skyline Advisor.