Severity Rating: HIGH
Software Affected
•VMware Cloud Director version8.x
•VMware Cloud Director version 9.0.x
•VMware Cloud Director version 9.1.x
•VMware Cloud Director version 9.5.x
•VMware Cloud Director version 9.7.x
•VMware Cloud Director version 10.0.x
•VMware Cloud Director version 10.0.1
Overview
A vulnerability has been reported in VMware Cloud Director which could
allow a remote attacker to execute arbitrary code on the targeted system.
Description
This vulnerability exists in VMware Cloud Director due to improper handling
of input. A remote attacker could exploit this vulnerability by sending
malicious traffic through HTML5- and Flex-based UIs, the API Explorer
interface and API access.
Successful exploitation of this vulnerability could allow a remote attacker
to execute arbitrary code on the target system.
Solution
Apply appropriate fix as mentioned in VMwares Security Advisory:
Vendor Information
VMware
References
VMware
CVE Name
CVE-2020-3956
About Cert Advisory
We have created this blog to provide latest security advisory from the india cert for the security vulnerability, threats, attacks and patching required to mitigate any kind of cyber attacks.
![Fwd: [CIVN-2020-0195] Multiple Vulnerabilities in XiaomiMi 9 devices](http://3.bp.blogspot.com/-ZRo8fwgs65M/UZC2jMJpcLI/AAAAAAAAC5Y/EfoFQsr1wzU/s1600/BS+No+Image.gif )