RSS   Podatności dla 'Intelligent operations'   RSS

2017-02-21
 
CVE-2015-4057

 

 
The "Plug-in for VMware vCenter" in VCE Vision Intelligent Operations before 2.6.5 sends a cleartext HTTP response upon a request for the Settings screen, which allows remote attackers to discover the admin user password by sniffing the network.

 
 
CVE-2015-4056

 

 
The System Library in VCE Vision Intelligent Operations before 2.6.5 does not properly implement cryptography, which makes it easier for local users to discover credentials by leveraging administrative access.

 


Copyright 2024, cxsecurity.com

 

Back to Top