VMWare discloses critical VCD Appliance auth bypass with no patch

VMWare discloses critical VCD Appliance auth bypass with no patch


VMware disclosed a critical and unpatched authentication bypass vulnerability affecting Cloud Director appliance deployments.

Cloud Director enables VMware admins to manage their organizations’ cloud services as part of Virtual Data Centers (VDC).

The auth bypass security flaw only affects appliances running VCD Appliance 10.5 that were previously upgraded from an older release. The company also added that CVE-2023-34060 does not impact fresh VCD Appliance 10.5 installs, Linux…



Source link