X.509 Certificate Validation Flaw in VMware vSphere Client
CVE-2014-1210
Currently unrated
Summary
VMware vSphere Client 5.0 prior to Update 3 and 5.1 prior to Update 2 has a vulnerability due to improper validation of X.509 certificates. This weakness allows attackers to execute man-in-the-middle attacks by spoofing SSL servers with crafted certificates, potentially compromising sensitive communications. Users are encouraged to apply the necessary updates to secure their systems against this risk, as detailed in VMware's security advisory.
References
Timeline
Vulnerability published
Vulnerability Reserved