← back
CVE-2019-5523

CVE-2019-5523

EPSS 3.3%
VMware vCloud Director for Service Providers 9.5.x prior to 9.5.0.3 update resolves a Remote Session Hijack vulnerability in the Tenant and Provider Portals. Successful exploitation of this issue may allow a malicious actor to access the Tenant or Provider Portals by impersonating a currently logged in session.
Affected products
VMware · VMware vCloud Director for Service Providers (vCD)

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/152289/VMware-Security-Advisory-2019-0004.htmlhttps://www.vmware.com/security/advisories/VMSA-2019-0004.htmlhttp://www.securityfocus.com/bid/107638