CVE-2019-5532

🗓️ 18 Sep 2019 20:32:36Reported by vmwareType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 151 Views

Information disclosure in VMware vCenter Server due to logging credentials in plain-text for OVF.

Reporter	Title	Published	Views	Family All 8
Cvelist	CVE-2019-5532	18 Sep 201920:32	–	cvelist
EUVD	EUVD-2019-15107	7 Oct 202500:30	–	euvd
NVD	CVE-2019-5532	18 Sep 201921:15	–	nvd
Prion	Information disclosure	18 Sep 201921:15	–	prion
RedhatCVE	CVE-2019-5532	22 May 202510:31	–	redhatcve
VMware	VMSA-2019-0013:VMware ESXi and vCenter Server updates address command injection and information disclosure vulnerabilities.	14 Sep 201900:00	–	vmware
VMware	VMware ESXi and vCenter Server updates address command injection and information disclosure vulnerabilities. (CVE-2017-16544, CVE-2019-5531, CVE-2019-5532, CVE-2019-5534)	16 Sep 201900:00	–	vmware
Tenable Nessus	VMware vCenter Server 6.0 / 6.5 / 6.7 Multiple Vulnerabilities (VMSA-2019-0013)	2 Oct 201900:00	–	nessus

NVD

Node

vmware vcenter_serverMatch6.0

vmware vcenter_serverMatch6.0a

vmware vcenter_serverMatch6.0b

vmware vcenter_serverMatch6.0u1

vmware vcenter_serverMatch6.0u1b

vmware vcenter_serverMatch6.0u3

vmware vcenter_serverMatch6.0update2

vmware vcenter_serverMatch6.0update2a

vmware vcenter_serverMatch6.0update2m

vmware vcenter_serverMatch6.0update3a

vmware vcenter_serverMatch6.0update3b

vmware vcenter_serverMatch6.0update3c

vmware vcenter_serverMatch6.0update3d

vmware vcenter_serverMatch6.0update3e

vmware vcenter_serverMatch6.0update3f

vmware vcenter_serverMatch6.0update3g

vmware vcenter_serverMatch6.0update3h

vmware vcenter_serverMatch6.0update3i

Node

vmware vcenter_serverMatch6.7

vmware vcenter_serverMatch6.7a

vmware vcenter_serverMatch6.7b

vmware vcenter_serverMatch6.7c

vmware vcenter_serverMatch6.7d

vmware vcenter_serverMatch6.7update1

vmware vcenter_serverMatch6.7update1b

vmware vcenter_serverMatch6.7update2

vmware vcenter_serverMatch6.7update2a

vmware vcenter_serverMatch6.7update2c

Node

vmware vcenter_serverMatch6.5

vmware vcenter_serverMatch6.5a

vmware vcenter_serverMatch6.5b

vmware vcenter_serverMatch6.5c

vmware vcenter_serverMatch6.5d

vmware vcenter_serverMatch6.5update1

vmware vcenter_serverMatch6.5update1b

vmware vcenter_serverMatch6.5update1c

vmware vcenter_serverMatch6.5update1d

vmware vcenter_serverMatch6.5update1e

vmware vcenter_serverMatch6.5update1g

vmware vcenter_serverMatch6.5update2

vmware vcenter_serverMatch6.5update2b

vmware vcenter_serverMatch6.5update2c

vmware vcenter_serverMatch6.5update2d

vmware vcenter_serverMatch6.5update2g

[
  {
    "product": "vCenter Server",
    "vendor": "VMware",
    "versions": [
      {
        "status": "affected",
        "version": "6.7 prior to 6.7 U3"
      },
      {
        "status": "affected",
        "version": "6.5 prior to 6.5 U3"
      },
      {
        "status": "affected",
        "version": "6.0 prior to 6.0 U3j"
      }
    ]
  }
]

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/154536/VMware-Security-Advisory-2019-0013.html
vmware	www.vmware.com/security/advisories/VMSA-2019-0013.html

21 Nov 2024 04:45Current

7.4High risk

Vulners AI Score7.4

CVSS 24

CVSS 3.17.7

EPSS0.00463

CWE-532