VMware EAP(ǧ¾Ú¥×¥é¥°¥¤¥ó)¤Ë¶ÛµÞ¤ÎÀȼåÀ¡¢¥¢¥ó¥¤¥ó¥¹¥È¡¼¥ë¤ò
VMware¤Ï2·î20Æü(Êƹñ»þ´Ö)¡¢¡ÖVMSA-2024-0003¡×¤Ë¤ª¤¤¤Æ¡¢Èó¿ä¾©¤Î¡ÖVMware Enhanced Authentication Plug-in (EAP)¡×¤Ë2·ï¤ÎÀȼåÀ¤¬Â¸ºß¤¹¤ë¤ÈÊ󤸤¿¡£¤³¤ÎÀȼåÀ¤ò°ÍѤµ¤ì¤ë¤È¡¢¹¶·â¼Ô¤ÏWeb¥Ö¥é¥¦¥¶¤ËEAP¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤Æ¤¤¤ë¥æ¡¼¥¶¡¼¤ò¤À¤Þ¤·¤ÆǤ°Õ¤ÎActive Directory¥µ¡¼¥Ó¥¹¥×¥ê¥ó¥·¥Ñ¥ë̾(SPN: Service Principal Name)¤Î¥µ¡¼¥Ó¥¹¥Á¥±¥Ã¥È¤òÍ׵ᤪ¤è¤ÓÃæ·Ñ¤µ¤»¤ë²ÄǽÀ¤¬¤¢¤ë¡£
¡û¡ÖVMware Enhanced Authentication Plug-in (EAP)¡×¤È¤Ï¡©
VMware Enhanced Authentication Plug-in (EAP)¤Ï2021ǯ3·î¤ËÈó¿ä¾©¤È¤Ê¤Ã¤¿Web¥Ö¥é¥¦¥¶¥×¥é¥°¥¤¥ó¡£vSphere¤Î´ÉÍý¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤ª¤è¤Ó¥Ä¡¼¥ë¤ËľÀÜ¥í¥°¥¤¥ó¤Ç¤¤ë¤è¤¦¤ËÀ߷פµ¤ì¤¿¥½¥Õ¥È¥¦¥§¥¢¥Ñ¥Ã¥±¡¼¥¸¤È¤µ¤ì¤ë(»²¹Í¡§¡ÖVMware vCenter Server 7.0 Update 2 Release Notes¡×)¡£
¤³¤Î¥×¥é¥°¥¤¥ó¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç¤Ï¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤Ê¤¤¡£¤Þ¤¿¡¢vCenter Server¡¢ESXi¡¢Cloud Foundation¤Ë¤â´Þ¤Þ¤ì¤Ê¤¤¡£±Æ¶Á¤ò¼õ¤±¤ë¥æ¡¼¥¶¡¼¤Ï¼êÆ°¤Ç¥×¥é¥°¥¤¥ó¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤¿¥æ¡¼¥¶¡¼¤Î¤ß¤È¤µ¤ì¤ë¡£
¡ûÀȼåÀ¤Î³µÍ×
ȯ¸«¤µ¤ì¤¿ÀȼåÀ¤Î¾ðÊó(CVE)¤Ï¼¡¤Î¤È¤ª¤ê¡£
¡ûCVE-2024-22245
Ǥ°Õ¤Îǧ¾Ú¥ê¥ì¡¼¤ª¤è¤Ó¥»¥Ã¥·¥ç¥ó¥Ï¥¤¥¸¥ã¥Ã¥¯¤ÎÀȼåÀ¡£¹¶·â¼Ô¤ÏEAP¤òWeb¥Ö¥é¥¦¥¶¤Ë¥¤¥ó¥¹¥È¡¼¥ë¤·¤¿¥æ¡¼¥¶¡¼¤ò¤À¤Þ¤·¤ÆǤ°Õ¤ÎActive Directory¥µ¡¼¥Ó¥¹¥×¥ê¥ó¥·¥Ñ¥ë̾(SPN)¤Î¥µ¡¼¥Ó¥¹¥Á¥±¥Ã¥È¤òÍ׵ᤪ¤è¤ÓÃæ·Ñ¤µ¤»¤ë²ÄǽÀ¤¬¤¢¤ë
¡ûCVE-2024-22250
¥»¥Ã¥·¥ç¥ó¥Ï¥¤¥¸¥ã¥Ã¥¯¤ÎÀȼåÀ¡£Windows¤ÎÈóÆø¢¥í¡¼¥«¥ë¥¢¥¯¥»¥¹¤ò»ý¤Ä¹¶·â¼Ô¤¬¡¢Æ±¤¸¥·¥¹¥Æ¥à¾å¤ÎÆø¢¥É¥á¥¤¥ó¥æ¡¼¥¶¡¼¤Î³«»Ï¤·¤¿Æø¢EAP¥»¥Ã¥·¥ç¥ó¤ò¥Ï¥¤¥¸¥ã¥Ã¥¯¤Ç¤¤ë²ÄǽÀ¤¬¤¢¤ë
¡ûÂкö
ȯ¸«¤µ¤ì¤¿ÀȼåÀ¤Î¤¦¤ÁºÇ¤â¹â¤¤¿¼¹ïÅ٤϶۵Þ(Critical)¤Èɾ²Á¤µ¤ì¤Æ¤ª¤êÃí°Õ¤¬É¬Íס£VMware¤ÏÀȼåÀ¤ÎÂкö¤È¤·¤Æ¡¢VMware Enhanced Authentication Plug-in (EAP)¤ò¥¢¥ó¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë¤³¤È¤ò¿ä¾©¤·¤Æ¤¤¤ë¡£·Ú¸ººö¤ä²óÈòºö¤ÏÄ󼨤·¤Æ¤ª¤é¤º¡¢ÄɲäΥѥåÁ¤âÄ󶡤ÎͽÄê¤Ï¤Ê¤¤¡£¤Ê¤ª¡¢¥¢¥ó¥¤¥ó¥¹¥È¡¼¥ë¤ÏWindows¤Î¡Ö¥×¥í¥°¥é¥à¤Èµ¡Ç½¡×¤«¤é¼Â»Ü¤Ç¤¤ë¤È¥¢¥Ê¥¦¥ó¥¹¤·¤Æ¤¤¤ë(»²¹Í¡§¡ÖVMSA-2024-0003: Questions & Answers | VMware¡×)¡£
¡û¡ÖVMware Enhanced Authentication Plug-in (EAP)¡×¤È¤Ï¡©
VMware Enhanced Authentication Plug-in (EAP)¤Ï2021ǯ3·î¤ËÈó¿ä¾©¤È¤Ê¤Ã¤¿Web¥Ö¥é¥¦¥¶¥×¥é¥°¥¤¥ó¡£vSphere¤Î´ÉÍý¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤ª¤è¤Ó¥Ä¡¼¥ë¤ËľÀÜ¥í¥°¥¤¥ó¤Ç¤¤ë¤è¤¦¤ËÀ߷פµ¤ì¤¿¥½¥Õ¥È¥¦¥§¥¢¥Ñ¥Ã¥±¡¼¥¸¤È¤µ¤ì¤ë(»²¹Í¡§¡ÖVMware vCenter Server 7.0 Update 2 Release Notes¡×)¡£
¤³¤Î¥×¥é¥°¥¤¥ó¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç¤Ï¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤Ê¤¤¡£¤Þ¤¿¡¢vCenter Server¡¢ESXi¡¢Cloud Foundation¤Ë¤â´Þ¤Þ¤ì¤Ê¤¤¡£±Æ¶Á¤ò¼õ¤±¤ë¥æ¡¼¥¶¡¼¤Ï¼êÆ°¤Ç¥×¥é¥°¥¤¥ó¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤¿¥æ¡¼¥¶¡¼¤Î¤ß¤È¤µ¤ì¤ë¡£
¡ûÀȼåÀ¤Î³µÍ×
ȯ¸«¤µ¤ì¤¿ÀȼåÀ¤Î¾ðÊó(CVE)¤Ï¼¡¤Î¤È¤ª¤ê¡£
¡ûCVE-2024-22245
Ǥ°Õ¤Îǧ¾Ú¥ê¥ì¡¼¤ª¤è¤Ó¥»¥Ã¥·¥ç¥ó¥Ï¥¤¥¸¥ã¥Ã¥¯¤ÎÀȼåÀ¡£¹¶·â¼Ô¤ÏEAP¤òWeb¥Ö¥é¥¦¥¶¤Ë¥¤¥ó¥¹¥È¡¼¥ë¤·¤¿¥æ¡¼¥¶¡¼¤ò¤À¤Þ¤·¤ÆǤ°Õ¤ÎActive Directory¥µ¡¼¥Ó¥¹¥×¥ê¥ó¥·¥Ñ¥ë̾(SPN)¤Î¥µ¡¼¥Ó¥¹¥Á¥±¥Ã¥È¤òÍ׵ᤪ¤è¤ÓÃæ·Ñ¤µ¤»¤ë²ÄǽÀ¤¬¤¢¤ë
¡ûCVE-2024-22250
¥»¥Ã¥·¥ç¥ó¥Ï¥¤¥¸¥ã¥Ã¥¯¤ÎÀȼåÀ¡£Windows¤ÎÈóÆø¢¥í¡¼¥«¥ë¥¢¥¯¥»¥¹¤ò»ý¤Ä¹¶·â¼Ô¤¬¡¢Æ±¤¸¥·¥¹¥Æ¥à¾å¤ÎÆø¢¥É¥á¥¤¥ó¥æ¡¼¥¶¡¼¤Î³«»Ï¤·¤¿Æø¢EAP¥»¥Ã¥·¥ç¥ó¤ò¥Ï¥¤¥¸¥ã¥Ã¥¯¤Ç¤¤ë²ÄǽÀ¤¬¤¢¤ë
¡ûÂкö
ȯ¸«¤µ¤ì¤¿ÀȼåÀ¤Î¤¦¤ÁºÇ¤â¹â¤¤¿¼¹ïÅ٤϶۵Þ(Critical)¤Èɾ²Á¤µ¤ì¤Æ¤ª¤êÃí°Õ¤¬É¬Íס£VMware¤ÏÀȼåÀ¤ÎÂкö¤È¤·¤Æ¡¢VMware Enhanced Authentication Plug-in (EAP)¤ò¥¢¥ó¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë¤³¤È¤ò¿ä¾©¤·¤Æ¤¤¤ë¡£·Ú¸ººö¤ä²óÈòºö¤ÏÄ󼨤·¤Æ¤ª¤é¤º¡¢ÄɲäΥѥåÁ¤âÄ󶡤ÎͽÄê¤Ï¤Ê¤¤¡£¤Ê¤ª¡¢¥¢¥ó¥¤¥ó¥¹¥È¡¼¥ë¤ÏWindows¤Î¡Ö¥×¥í¥°¥é¥à¤Èµ¡Ç½¡×¤«¤é¼Â»Ü¤Ç¤¤ë¤È¥¢¥Ê¥¦¥ó¥¹¤·¤Æ¤¤¤ë(»²¹Í¡§¡ÖVMSA-2024-0003: Questions & Answers | VMware¡×)¡£
