2 results (0.006 seconds)

CVSS: 5.9EPSS: 0%CPEs: 16EXPL: 0

VMware NSX Edge 6.1 before 6.1.7 and 6.2 before 6.2.3 and vCNS Edge 5.5 before 5.5.4.3, when the SSL-VPN feature is configured, allow remote attackers to obtain sensitive information via unspecified vectors. VMware NSX Edge 6.1 en versiones anteriores a 6.1.7 y 6.2 en versiones anteriores a 6.2.3 y vCNS Edge 5.5 en versiones anteriores a 5.5.4.3, cuando la característica SSL-VPN está configurada, permiten a atacantes remotos obtener información sensible a través de vectores no especificados. • http://www.securitytracker.com/id/1036077 http://www.vmware.com/security/advisories/VMSA-2016-0007.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 5.0EPSS: 0%CPEs: 17EXPL: 0

VMware NSX 6.0 before 6.0.6, and vCloud Networking and Security (vCNS) 5.1 before 5.1.4.2 and 5.5 before 5.5.3, does not properly validate input, which allows attackers to obtain sensitive information via unspecified vectors. VMware NSX 6.0 anterior a 6.0.6, y vCloud Networking and Security (vCNS) 5.1 anterior a 5.1.4.2 y 5.5 anterior a 5.5.3, no valida debidamente las entradas, lo que permite a atacantes obtener información sensible a través de vectores no especificados. • http://secunia.com/advisories/59938 http://www.securitytracker.com/id/1030835 http://www.vmware.com/security/advisories/VMSA-2014-0009.html https://exchange.xforce.ibmcloud.com/vulnerabilities/95926 • CWE-20: Improper Input Validation •