CVE-2019-5513

4 documents4 sources
Severity
5.3MEDIUM
EPSS
0.7%
top 27.52%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Vmware Horizon
Timeline
PublishedApr 9
Latest updateMay 13

Description

VMware Horizon Connection Server (7.x before 7.8, 7.5.x before 7.5.2, 6.x before 6.2.8) contains an information disclosure vulnerability. Successful exploitation of this issue may allow disclosure of internal domain names, the Connection Server’s internal name, or the gateway’s internal IP address.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

CVEListV5vmware_horizon_connection_serverVMware Horizon Connection Server 7.x before 7.8, 7.5.x before 7.5.2, 6.x before 6.2.8
NVDvmware/horizon6.0.06.2.8+2

Patches

Patch: www.vmware.comPatch: www.vmware.com

🔴Vulnerability Details

2
GHSA
GHSA-fw8h-225v-qpf3: VMware Horizon Connection Server (72022-05-13
CVEList
CVE-2019-5513: VMware Horizon Connection Server (72019-04-09

📋Vendor Advisories

1
VMware
VMware Horizon update addresses Connection Server information disclosure vulnerability2019-03-14
CVE-2019-5513 (MEDIUM CVSS 5.3) | VMware Horizon Connection Server (7 | cvebase.io