2 matches found
CVE-2020-3977
CVE-2020-3977 affects VMware Horizon DaaS 7.x and 8.x prior to 8.0.1 Update 1. Root cause: broken authentication due to how first-factor authentication is handled, enabling potential bypass of two-factor authentication for an attacker with a legitimate Horizon DaaS account. Impact: partial integr...
Horizon DaaS update addresses a broken authentication vulnerability (CVE-2020-3977)
3. Broken authentication vulnerability CVE-2020-3977 Horizon DaaS contains a broken authentication vulnerability due to a flaw in the way it handled the first factor authentication. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base...