CVE-2018-6960
published 2018-04-20CVE-2018-6960: VMware Horizon DaaS (7.x before 8.0.0) contains a broken authentication vulnerability that may allow an attacker to bypass two-factor authentication. Note: In…
high8.8CVSS 3.0
AVNACLPRLUINSUCHIHAH
VMware Horizon DaaS (7.x before 8.0.0) contains a broken authentication vulnerability that may allow an attacker to bypass two-factor authentication. Note: In order to exploit this issue, an attacker must have a legitimate account on Horizon DaaS.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| vmware | horizon_daas | — | — |
| vmware | horizon_daas | >= 7.0.0 < 8.0.0 | 8.0.0 |