Obtain sensitive information vulnerability in VMware vCenter Server

Описание

Improper certificate validation was found in VMware vCenter Server. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a traffic interception.

---

Technical details

This vulnerability can be exploited when vCenter Server binding to LDAP server via TLS.

Первичный источник обнаружения

• VMware advisory
  

Связанные продукты

• VMware-vCenter-Server

Список CVE

• CVE-2015-6932
  high

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com