CVE-2020-3944
First published: Wed Feb 19 2020(Updated: )
vRealize Operations for Horizon Adapter (6.7.x prior to 6.7.1 and 6.6.x prior to 6.6.1) has an improper trust store configuration leading to authentication bypass. An unauthenticated remote attacker who has network access to vRealize Operations, with the Horizon Adapter running, may be able to bypass Adapter authentication.
Credit: security@vmware.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Vmware Vrealize Operations | >=6.6.0<6.6.1 | |
| Vmware Vrealize Operations | >=6.7.0<6.7.1 | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2020-3944?
CVE-2020-3944 is a vulnerability in vRealize Operations for Horizon Adapter (6.7.x prior to 6.7.1 and 6.6.x prior to 6.6.1) that has an improper trust store configuration leading to authentication bypass.
How severe is CVE-2020-3944?
CVE-2020-3944 has a severity rating of 8.6 (high).
What software is affected by CVE-2020-3944?
vRealize Operations for Horizon Adapter versions 6.7.x prior to 6.7.1 and 6.6.x prior to 6.6.1 are affected.
How can an attacker exploit CVE-2020-3944?
An unauthenticated remote attacker with network access to vRealize Operations, with the Horizon Adapter running, may be able to bypass authentication.
Where can I find more information about CVE-2020-3944?
You can find more information about CVE-2020-3944 in the VMware Security Advisory VMSA-2020-0003.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/tags
- agent/type
- agent/event
- agent/description
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/vmware
- canonical/vmware vrealize operations
- version/vmware vrealize operations/6.6.0
- version/vmware vrealize operations/6.7.0
- vendor/microsoft
- canonical/microsoft windows