CVE-2020-3952CISA KEV: Actively Exploited

VMware vCenter Server Information Disclosure Vulnerability

Published Nov 3, 2021·Updated Nov 3, 2021

Description

VMware vCenter Server contains an information disclosure vulnerability in the VMware Directory Service (vmdir) when the Platform Services Controller (PSC) does not correctly implement access controls. Successful exploitation allows an attacker with network access to port 389 to extract sensitive information.

Public Exploits & PoCs5 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free