VMware Urges to Remove Enhanced EAP Plugin to Stop Auth & Session Hijack Attacks

21 February 2024

VMware has issued an urgent advisory to administrators to remove a deprecated authentication plugin vulnerable to severe security threats. The Enhanced Authentication Plugin (EAP), which provided seamless login capabilities to vSphere’s management interfaces, is susceptible to authentication relay and session hijack attacks due to two unpatched security vulnerabilities.

Source: GBHackers

Date:

21 February 2024

Categorie(s):

NEWS

Tag(s):

Attacks, Auth, Cyber Security News, Hijack, Plugins

Passwords under seven characters can be easily cracked30 April 2024
Security analysts believe more than half of tasks could be automated30 April 2024
eBook: Do you have what it takes to lead in cybersecurity?30 April 2024
Earth Day: The surprising connection of cybersecurity and sustainability30 April 2024
F5 shares fall over 9% on disappointing earnings outlook30 April 2024