HPE Community
Application Integration
1819884 Members
2787 Online
109607 Solutions
New Discussion

After installing vCenter/ESXi 7.0 U3s patch, unable to reinstall Nimble plugin

 
SOLVED
Go to solution
Rory Schmitz
Occasional Advisor

‎03-04-2025 12:13 PM

‎03-04-2025 12:13 PM

After installing vCenter/ESXi 7.0 U3s patch, unable to reinstall Nimble plugin

To remediate the CVE's below, we've upgraded to the latest VMware 7.0 U3s, but now our vcenter client plugins give us the following error..  Please advise.

Error deploying plug-in. java.lang.IllegalStateException: Cannot convert value of type 'java.lang.String' to required type 'com.fasterxml.jackson.databind.PropertyNamingStrategy' for property 'propertyNamingStrategy': no matching editors or conversion strategy found org.springframework.beans.TypeConverterDelegate.convertIfNecessary(TypeConverterDelegate.java:262)

 

  • CVE-2025-22224 (CVSS score: 9.3) - A Time-of-Check Time-of-Use (TOCTOU) vulnerability that leads to an out-of-bounds write, which a malicious actor with local administrative privileges on a virtual machine could exploit to execute code as the virtual machine's VMX process running on the host
  • CVE-2025-22225 (CVSS score: 8.2) - An arbitrary write vulnerability that a malicious actor with privileges within the VMX process could exploit to result in a sandbox escape
  • CVE-2025-22226 (CVSS score: 7.1) - An information disclosure vulnerability due to an out-of-bounds read in HGFS that a malicious actor with administrative privileges to a virtual machine could exploit to leak memory from the vmx process
0 Kudos
Reply
6 REPLIES 6
PatrickLong
Respected Contributor

‎03-04-2025 12:38 PM

‎03-04-2025 12:38 PM

Re: After installing vCenter/ESXi 7.0 U3s patch, unable to reinstall Nimble plugin

Maybe the same (or similar to) the issue encountered in previous upgrades with a workaround that involves Nimble support restarting jetty service on your array(s) as described in this post. and addressed in Customer Advisory a00142228en_us  What version of NimbleOS is on the array(s) linked to your vCenter, and what version is your VCSA?  The latest VCSA is vCenter Server 7.0 Update 3t version 7.0.3.02200 released 2024-10-21..  I assume you updated the host ESXi version to ESXi 7.0 Update 3s build 24585291 released today...

0 Kudos
Reply
Rory Schmitz
Occasional Advisor

‎03-04-2025 12:51 PM

‎03-04-2025 12:51 PM

Re: After installing vCenter/ESXi 7.0 U3s patch, unable to reinstall Nimble plugin

Thanks for that info.  The customer advisory link didn't appear to work for me.  I'll try searching the number, though.

Below are the versions we're running:

Nimble: 6.1.2.500-1053701-opt
ESXi Hosts: VMware ESXi, 7.0.3, 24585291
VCSA: 7.0.3.02200 build 24322018

 

 

0 Kudos
Reply
PatrickLong
Respected Contributor

‎03-04-2025 01:06 PM

‎03-04-2025 01:06 PM

Solution

Re: After installing vCenter/ESXi 7.0 U3s patch, unable to reinstall Nimble plugin

The advisory  https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=a00142228en_us  

states that affected versions are: 

  • OS versions 6.1.2.501 and earlier 
  • vCenter 7.0u3q (Build: 23788036) and later

So I'm sure this can be fixed in your case by upgrading NimbleOS to 6.1.2.502 or latest  version 6.1.2.600.  If your environment requires a maintenance window to do that, then a short-term solution would be to call Nimble Supoort and ask them to apply the workaround (which is to restart the jetty service on your arrays(s) which makes the array GUI unavailable for a minute or two while restarting, but does not interrupt the array serving I/O) and then have you retry reinstalling the plugin.

0 Kudos
Reply
Rory Schmitz
Occasional Advisor

‎03-04-2025 01:12 PM

‎03-04-2025 01:12 PM

Re: After installing vCenter/ESXi 7.0 U3s patch, unable to reinstall Nimble plugin

That link works great.  I apprecaite the VERY quick responses.  We'll work on getting our Nimble version updated, but I'm showing a DECLINED_SUPPORT_GM for that version. I'll reach out to support and see which direction they'd like to take, the workaround or approve that update for us.

0 Kudos
Reply
buzzsubash
HPE Pro

‎03-05-2025 10:18 PM

‎03-05-2025 10:18 PM

Re: After installing vCenter/ESXi 7.0 U3s patch, unable to reinstall Nimble plugin

DECLINED_SUPPORT_GM is due to array being out of active support. Can you please confirm if the customer has renewed support contract recently ?

Subash Geetha Krishnan
HPE Services – Hybrid Cloud Support

I work at HPE
HPE Support Center offers support for your HPE services and products when and how you need it. Get started with HPE Support Center today.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]
Accept or Kudo
Reply
Rory Schmitz
Occasional Advisor

‎03-06-2025 09:05 AM

‎03-06-2025 09:05 AM

Re: After installing vCenter/ESXi 7.0 U3s patch, unable to reinstall Nimble plugin

We did reach out to support and they let us know that one of the two arrays in the group were out of support.  We've since sent in the renewal approval and awaiting it to be appled.  We'll then get the arrays updated.  Thanks for the help, everyone!

0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.