all InfoSec news
VMware Urges to Remove Enhanced EAP Plugin to Stop Auth & Session Hijack Attacks
GBHackers On Security gbhackers.com
VMware has issued an urgent advisory to administrators to remove a deprecated authentication plugin vulnerable to severe security threats. The Enhanced Authentication Plugin (EAP), which provided seamless login capabilities to vSphere’s management interfaces, is susceptible to authentication relay and session hijack attacks due to two unpatched security vulnerabilities. Document Live Account Takeover Attack Simulation How […]
The post VMware Urges to Remove Enhanced EAP Plugin to Stop Auth & Session Hijack Attacks appeared first on GBHackers on Security | #1 …
administrators advisory attacks auth authentication capabilities cve cyber security eap hijack login management management interfaces plugin relay remove security security threats session session hijack threats unpatched urgent vmware vsphere vulnerability vulnerable