patchletter

The current version of VMware vCenter is 9.1.0.0 (as of 12/05/2026).

VMware vCenter

Broadcom · current 9.1.0.0

Actively exploited vulnerabilities

The US cybersecurity agency CISA lists this vulnerability in its catalog of Known Exploited Vulnerabilities. Check your version and patch or mitigate promptly.

  • CVE-2024-37079Broadcom VMware vCenter Server Out-of-bounds Write Vulnerability

Source: CISA KEV. The CVE is matched to the product automatically — when in doubt, the linked NVD entry applies.

VMware vCenter at a glance

VMware vCenter Server is the central management plane for VMware virtualization — it orchestrates hosts, VMs, vMotion and more. Broadcom/VMware ships vCenter releases and patches; because it controls the whole virtual estate and has seen actively exploited flaws, prompt patching and careful operation are critical.

For admins the version/build compatibility with ESXi hosts is the key constraint — follow the interoperability matrix, and patch vCenter before or in step with hosts per the guidance. Snapshot/back up the vCenter appliance before updating. vCenter holds credentials to the entire environment; it belongs on an isolated management network behind SSO, never exposed. After patching, verify host connectivity and core workflows. Track the support lifecycle and the Broadcom licensing changes.

Support cycles (endoflife.date)

CycleLatest versionStatus
9.19.1.0.0EOL 12 Aug 28
9.09.0.2.0EOL 17 Sept 27
8.08.0 U3iEOL 11 Oct 27
7.07.0 U3wEnd of Life
6.76.7 U3wEnd of Life
6.56.5 U3wEnd of Life
6.06.0 U3jEnd of Life
5.55.5 U3kEnd of Life

Release history · as detected by patchletter

VersionChannelDateNotes
9.1.0.0STABLE12/05/2026Release notes →

Never miss a VMware vCenter update

We check the source daily and email you — instantly or as a digest. Free, one-click unsubscribe.

Watch VMware vCenter

Related tools in Virtualization & Backup