RSS   Vulnerabilities for 'Horizon daas'   RSS

2020-09-22
 
CVE-2020-3977

CWE-306
 

 
VMware Horizon DaaS (7.x and 8.x before 8.0.1 Update 1) contains a broken authentication vulnerability due to a flaw in the way it handled the first factor authentication. Successful exploitation of this issue may allow an attacker to bypass two-factor authentication process. In order to exploit this issue, an attacker must have a legitimate account on Horizon DaaS.

 
2019-12-06
 
CVE-2019-5544

CWE-787
 

 
OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.

 
2017-05-31
 
CVE-2017-4897

 

 
VMware Horizon DaaS before 7.0.0 contains a vulnerability that exists due to insufficient validation of data. An attacker may exploit this issue by tricking DaaS client users into connecting to a malicious server and sharing all their drives and devices. Successful exploitation of this vulnerability requires a victim to download a specially crafted RDP file through DaaS client by clicking on a malicious link.

 

 >>> Vendor: Vmware 132 Products
Workstation
Studio
Gsx server
Esx server
ACE
Player
Server
Infrastructure
Virtualcenter
Vmware workstation
Vmware server
Vmware player
ESXI
Remote console
ESX
Ace 2
Fusion
Vmware player 2
Vmware ace
Vmware esx
Vmware esxi
Movie decoder
Vmware virtualcenter
Hyperic hq
Tc server
Operations manager
Lab manager
Stage manager
Vcenter
Vcenter lab manager
Vcenter stage manager
VMRC
Vix api
View manager
Spring framework
Vcenter server
Springsource spring security
Open-vm-tools
Virtual infrastructure client
Springsource spring framework
AMS
Vcenter update manager
Zimbra desktop
Vcenter chargeback manager
VIEW
Vsphere
Vcenter orchestrator
Vshield manager
VMA
Horizon
Vcenter operations
Capacityiq
Ovf tool
Vcenter server appliance
Vi-client
Vsphere client
Vcloud director
Tools
Vm-support
NSX
Vcloud networking and security
Airwatch
Vcloud automation center
Rabbitmq
Vsphere data protection
Horizon client
Horizon view client
Vrealize orchestrator
Vrealize business
Vrealize automation
Vcloud automation identity appliance
Vrealize log insight
Nsx edge
Vcloud networking and security edge
Workstation player
Workstation pro
Photon os
Identity manger
Fusion pro
Vrealize operations
Horizon view
Spring security
Airwatch inbox
Airwatch agent
Horizon daas
Unified access gateway
Spring advanced message queuing protocol
Harbor
Spring data rest
Spring boot
Xenon
Spring integration zip
Spring integration
Installbuilder
Vsphere esxi
Workspace one
Intelligent hub
Workspace one boxer
Workspace one content
Workspace one intelligent hub
See all Products for Vendor Vmware


Copyright 2024, cxsecurity.com

 

Back to Top