CVE-2020-3943

vRealize Operations for Horizon Adapter (6.7.x prior to 6.7.1 and 6.6.x prior to 6.6.1) uses a JMX RMI service which is not securely configured. An unauthenticated remote attacker who has network access to vRealize Operations, with the Horizon Adapter running, may be able to execute arbitrary code in vRealize Operations.
References
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:vmware:vrealize_operations:*:*:*:*:*:horizon:*:*
cpe:2.3:a:vmware:vrealize_operations:*:*:*:*:*:horizon:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2020-02-19 21:15

Updated : 2024-02-04 20:39


NVD link : CVE-2020-3943

Mitre link : CVE-2020-3943

CVE.ORG link : CVE-2020-3943


JSON object : View

Products Affected

vmware

  • vrealize_operations

microsoft

  • windows