Skyline Advisor Pro Proactive Findings – April Edition

VMware Skyline releases new Proactive Findings every month. Findings are prioritized by trending issues in VMware Support, issues raised through post escalation review, security vulnerabilities, and issues raised from VMware engineering, and customers.

For the month of April, we released 21 new Findings. Of these, there are 18 Findings based on trending issues, 1 based on VMSAs, and 2 based on post escalation reviews. We picked a few Findings from each of these categories which stand out in this release.

VMware Support Trending Issues

VMware Support trending issues are KBs that have solved a large number of SRs and/or viewed a large number of times.

In KB 83275, VCSA 7.0 Using vSphere HA (High Availability) and when a Datastore enters into All-Paths-Down (APD) state virtual machine failover never occurs. If an APD is introduced on all the datastores connected to a host, the FDM agent on the host will move into ‘uninitialized’ state. Due to this, the FDM agent on a host will not perform the VMCP operation (like terminating a VM). Hence, the impacted VM would not be restarted on any other host. This issue is resolved in VMware vCenter 7.0u2c.

Finding ID: vSphere-HAfailureAPD-KB#83275
- Description: VCSA 7.0 Using vSphere HA (High Availability) and when a Datastore enters into All-Paths-Down (APD) state virtual machine failover never occurs.
- Resolution: This issue is resolved in VMware vCenter 7.0u2c.
- Helpful Link: https://kb.vmware.com/s/article/83275
- Severity: Critical

Post Escalation Review

VMware Support has developed a Post Escalation Review process. We review critical escalations which come into our Escalation Management team and determine steps to prevent these escalations in the future with other customers. One of the outcomes of this process is the creation of Skyline Findings.

In KB 88046, NSX-T 2.5.1 issue will cause the display_names table in some customer setup to grow huge and take long time/fail to checkpoint leading to /config size increase. This will result in NSX UI becoming accessible or new config takes a long time to get created if /config usage keeps increasing. The cause of this issue is because the Display_Name Cleaning Task was disabled due to Spring configuration re-organization. This issue is resolved in NSX-T for data center 3.0.3 and 3.1.2.1.

Finding ID: NSXT-clusterdown-KB#88046
- Description: NSX-T 2.5.1.0 cluster down, checkpoint failures.
- Resolution: This issue is resolved in NSX-T for data center 3.0.3 and 3.1.2.1.
- Helpful Link: https://kb.vmware.com/s/article/88046
- Severity: Critical

Security Vulnerabilities

In VMSA-2022-0009, VMware vCenter Server updates address an information disclosure vulnerability (CVE-2022-22948). The vCenter Server contains an information disclosure vulnerability due to improper permission of files. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 5.5. A malicious actor with non-administrative access to the vCenter Server may exploit this issue to gain access to sensitive information. This vulnerability is mitigated in the vCenter updates noted in the VMSA.

Finding ID: vSphere-CVE-2022-22948-VMSA#202209
- Description: VMware vCenter Server updates address an information disclosure vulnerability (CVE-2022-22948).
- Resolution: This vulnerability is mitigated in the vCenter updates noted in the VMSA.
- Helpful Link: https://www.vmware.com/security/advisories/VMSA-2022-0009.html
- Severity: Moderate

To review all released Findings for the month of April and all current active VMware Skyline Findings please go to the VMware Skyline Findings Catalog.

Most Viewed Findings in Last 30 Days

Below are the most viewed Findings by users in Skyline Advisor Pro.