CVE-2020-3993

Summary

VMware NSX-T (3.x before 3.0.2, 2.5.x before 2.5.2.2.0) contains a security vulnerability that exists in the way it allows a KVM host to download and install packages from NSX manager. A malicious actor with MITM positioning may be able to exploit this issue to compromise the transport node.

Affected Software

VendorProductVersion RangeStatus
n/aVMware NSX-TVMware NSX-T (3.x before 3.0.2, 2.5.x before 2.5.2.2.0)affected

Weaknesses

  • MITM vulnerability

ADP Enrichment

CVE Program Container

Additional References

References