Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2014-8371
HistoryDec 08, 2014 - 11:00 a.m.

CVE-2014-8371

2014-12-0811:00:00
mitre
www.cve.org
1

6.1 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

21.4%

JSON

VMware vCenter Server Appliance (vCSA) 5.5 before Update 2, 5.1 before Update 3, and 5.0 before Update 3c does not properly validate certificates when connecting to a CIM Server on an ESXi host, which allows man-in-the-middle attackers to spoof CIM servers via a crafted certificate.

Related

prion 1
cve 1
nvd 1
threatpost 1
securityvulns 2
openvas 3
nessus 2
vmware 2
prion
prion
Code injection
2014-12-08 11:59:00
cve
cve
CVE-2014-8371
2014-12-08 11:59:08
nvd
nvd
CVE-2014-8371
2014-12-08 11:59:08
threatpost
threatpost
VMware Releases Patches for XSS, Cert. Validation Issue
2014-12-08 15:08:01
securityvulns
securityvulns
VMware vSphere multiple security vulnerabilities
2014-12-11 00:00:00
NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities
2014-12-11 00:00:00
openvas
openvas
VMware ESXi updates address security vulnerabilities (VMSA-2014-0012) - Remote Version Check
2014-12-05 00:00:00
VMware ESXi product updates address security vulnerabilities (VMSA-2014-0012)
2014-12-05 00:00:00
VMware Security Updates for vCenter Server (VMSA-2014-0012)
2014-12-05 00:00:00
nessus
nessus
VMSA-2014-0012 : VMware vSphere product updates address security vulnerabilities
2014-12-06 00:00:00
VMware Security Updates for vCenter Server (VMSA-2014-0012)
2014-12-12 00:00:00
vmware
vmware
VMware vSphere product updates address security vulnerabilities
2014-12-04 00:00:00
VMware vSphere product updates address security vulnerabilities
2014-12-04 00:00:00

6.1 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

21.4%

JSON
Related for CVELIST:CVE-2014-8371
prion1cve1nvd1threatpost1securityvulns2openvas3nessus2vmware2