CVE-2015-4057

2017-02-21T19:59:00
ID CVE-2015-4057
Type cve
Reporter cve@mitre.org
Modified 2017-03-15T18:44:00

Description

The "Plug-in for VMware vCenter" in VCE Vision Intelligent Operations before 2.6.5 sends a cleartext HTTP response upon a request for the Settings screen, which allows remote attackers to discover the admin user password by sniffing the network.