CVE-2020-3945
First published: Wed Feb 19 2020(Updated: )
vRealize Operations for Horizon Adapter (6.7.x prior to 6.7.1 and 6.6.x prior to 6.6.1) contains an information disclosure vulnerability due to incorrect pairing implementation between the vRealize Operations for Horizon Adapter and Horizon View. An unauthenticated remote attacker who has network access to vRealize Operations, with the Horizon Adapter running, may obtain sensitive information
Credit: security@vmware.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Vmware Vrealize Operations | >=6.6.0<6.6.1 | |
| Vmware Vrealize Operations | >=6.7.0<6.7.1 | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2020-3945?
CVE-2020-3945 is an information disclosure vulnerability in vRealize Operations for Horizon Adapter.
What is the severity of CVE-2020-3945?
The severity of CVE-2020-3945 is high with a severity value of 7.5.
Which versions of vRealize Operations for Horizon Adapter are affected?
vRealize Operations for Horizon Adapter versions 6.6.x prior to 6.6.1 and 6.7.x prior to 6.7.1 are affected.
How does CVE-2020-3945 work?
CVE-2020-3945 is an information disclosure vulnerability due to incorrect pairing implementation between vRealize Operations for Horizon Adapter and Horizon View.
Is Microsoft Windows vulnerable to CVE-2020-3945?
No, Microsoft Windows is not vulnerable to CVE-2020-3945.
- collector/nvd-index
- agent/severity
- agent/author
- agent/references
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/remedy
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/vmware
- canonical/vmware vrealize operations
- version/vmware vrealize operations/6.6.0
- version/vmware vrealize operations/6.7.0
- vendor/microsoft
- canonical/microsoft windows