virus logo FortiClient Vulnerability

Security Vulnerabilities fixed in VMware vCenter Server VMSA-2019-0013

description-logoDescription

VMware vCenter Server (6.7 prior to 6.7 U1b, 6.5 prior to 6.5 U2b, and 6.0 prior to 6.0 U3j) contain an information disclosure vulnerability in clients arising from insufficient session expiration. An attacker with physical access or an ability to mimic a websocket connection to a users browser may be able to obtain control of a VM Console after the user has logged out or their session has timed out.

affected-products-logoAffected Applications

VMware vCenter Server

CVE References

CVE-2019-5531 CVE-2019-5532 CVE-2019-5534

Other References

https://www.vmware.com/security/advisories/VMSA-2019-0013.html
ID 4276
Created Feb 23, 2022
Description
Updated		 Nov 07, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor VMware
Patch manual
Application VMware vCenter Server