CVE-2024-22250 | VMware Enhanced Authentication Plug-in session fixiation (VMSA-2024-0003)

Posted by Angelo Barbosa | Feb 20, 2024 | CVE

A vulnerability was found in VMware Enhanced Authentication Plug-in. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to session fixiation. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is known as CVE-2024-22250. The attack can be launched remotely. There is no exploit available.

It is recommended to change the configuration settings.

CVE-2024-22250 | VMware Enhanced Authentication Plug-in session fixiation (VMSA-2024-0003)

Related Posts

CVE-2023-40533 | Tinyproxy 1.11.1 HTTP Request uninitialized variable (TALOS-2023-1902)

CVE-2024-6189 | Tenda A301 15.13.08.12 /goform/WifiExtraSet fromSetWirelessRepeat wpapsk_crypto stack-based overflow

CVE-2023-45172 | IBM AIX/VIOS 7.2/7.3 denial of service (XFDB-267970)

CVE-2024-38183 | Microsoft GroupMe server-side request forgery