Vmware: >> Vsphere Client >> 5.0 Security Vulnerabilities
VMware vSphere Client 4.0, 4.1, 5.0 before Update 3, and 5.1 before Update 2 does not properly validate updates to Client files, which allows remote attackers to trigger the downloading and execution of an arbitrary program via unspecified vectors.
CVSS Score
9.3
EPSS Score
0.041
Published
2014-04-11
VMware vSphere Client 5.0 before Update 3 and 5.1 before Update 2 does not properly validate X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate.
CVSS Score
5.8
EPSS Score
0.002
Published
2014-04-11