Skip to main content
CVE-2020-3952 CRITICAL POC KEV THREAT Act Now

Under certain conditions, vmdir that ships with VMware vCenter Server, as part of an embedded or external Platform Services Controller (PSC), does not correctly implement access controls. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass VMware Vcenter Server
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
90.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy