VMware Horizon DaaS (7.x and 8.x prior to 8.0.1 Update 1) contains a broken authentication vulnerability due to a flaw in the way it handled the first factor authentication. Successful exploitation of this issue may allow an malicious user to bypass two-factor authentication process. In order to exploit this issue, an attacker must have a legitimate account on Horizon DaaS.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vmware horizon daas 7.0.0 |
||
vmware horizon daas |