VMSA-2024-0003



VMSA-2024-0003


9.6 – 7.8


2024-02-20


2024-02-20 (Initial notice)


CVE-2024-22245, CVE-2024-22250


Addresses arbitrary authentication relay and session hijacking vulnerabilities in deprecated VMware Enhanced Authentication Plug-in (EAP) (CVE-2024-22245, CVE-2024-22250)

Tags:

Leave a Reply

Your email address will not be published. Required fields are marked *

Related News

Trimble publishes security updates to tackle vulnerability in CityWorks softwareTrimble publishes security updates to tackle vulnerability in CityWorks software

Trimble publishes security updates to tackle vulnerability in CityWorks software

February 7, 2025
Several vulnerabilities in Google Android OS could allow a climbing of privilegesSeveral vulnerabilities in Google Android OS could allow a climbing of privileges

Several vulnerabilities in Google Android OS could allow a climbing of privileges

February 4, 2025

You may have missed

Trimble publishes security updates to tackle vulnerability in CityWorks softwareTrimble publishes security updates to tackle vulnerability in CityWorks software

Trimble publishes security updates to tackle vulnerability in CityWorks software

February 7, 2025
Several vulnerabilities in Google Android OS could allow a climbing of privilegesSeveral vulnerabilities in Google Android OS could allow a climbing of privileges

Several vulnerabilities in Google Android OS could allow a climbing of privileges

February 4, 2025
Cisa adds an exploited vulnerability known in the catalogCisa adds an exploited vulnerability known in the catalog

Cisa adds an exploited vulnerability known in the catalog

January 29, 2025
Oracle Quarterly Critical Patches Released January 21, 2025Oracle Quarterly Critical Patches Released January 21, 2025

Oracle Quarterly Critical Patches Released January 21, 2025

January 21, 2025
CISA and FBI Issue Updated Guidance on Product Security Bad PracticesCISA and FBI Issue Updated Guidance on Product Security Bad Practices

CISA and FBI Issue Updated Guidance on Product Security Bad Practices

January 17, 2025
Threat Actors Chained Vulnerabilities in Ivanti Cloud Service ApplicationsThreat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications

Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications

January 15, 2025