CVE-2019-5523
N/A
N/A
Summary
VMware vCloud Director for Service Providers 9.5.x prior to 9.5.0.3 update resolves a Remote Session Hijack vulnerability in the Tenant and Provider Portals. Successful exploitation of this issue may allow a malicious actor to access the Tenant or Provider Portals by impersonating a currently logged in session.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| VMware | VMware vCloud Director for Service Providers (vCD) | 9.5.x before 9.5.0.3 | affected |
Weaknesses
- Remote Session Hijack vulnerability
ADP Enrichment
CVE Program Container
Additional References
- http://packetstormsecurity.com/files/152289/VMware-Security-Advisory-2019-0004.html
- http://www.securityfocus.com/bid/107638
- https://www.vmware.com/security/advisories/VMSA-2019-0004.html
References
- http://packetstormsecurity.com/files/152289/VMware-Security-Advisory-2019-0004.html
- http://www.securityfocus.com/bid/107638
- https://www.vmware.com/security/advisories/VMSA-2019-0004.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.