Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Web Configuration tool in VMware vCenter Orchestrator (vCO) 4.0 before Update 4, 4.1 before Update 2, and 4.2 before Update 1 places the vCenter Server password in an HTML document, which allows remote authenticated administrators to obtain sensitive information by reading this document.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
VMware vCenter Orchestrator 信息泄露漏洞
Vulnerability Description
VMWare是一款虚拟PC软件,允许在一台机器上同时运行两个或多个Windows、DOS、LINUX系统。 VMware vCenter Orchestrator (vCO) Update 4版本之前的4.0版本,Update 2版本之前的4.1版本,以及Update 1版本之前的4.2版本中存在漏洞,该漏洞源于Web配置工具将vCenter服务器密码配置在HTML文档中。远程认证管理员可通过读取该文档获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A