cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2020-3977,https://securityvulnerability.io/vulnerability/CVE-2020-3977,,"VMware Horizon DaaS (7.x and 8.x before 8.0.1 Update 1) contains a broken authentication vulnerability due to a flaw in the way it handled the first factor authentication. Successful exploitation of this issue may allow an attacker to bypass two-factor authentication process. In order to exploit this issue, an attacker must have a legitimate account on Horizon DaaS.",Vmware,Vmware Horizon Daas,6.5,MEDIUM,0.000539999979082495,false,false,false,false,,false,false,2020-09-22T13:45:14.000Z,0
CVE-2019-5544,https://securityvulnerability.io/vulnerability/CVE-2019-5544,,OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.,Vmware,Esxi And Horizon Daas,9.8,CRITICAL,0.2021999955177307,true,false,true,true,false,false,false,2019-12-06T15:54:18.000Z,0
CVE-2018-6960,https://securityvulnerability.io/vulnerability/CVE-2018-6960,,"VMware Horizon DaaS (7.x before 8.0.0) contains a broken authentication vulnerability that may allow an attacker to bypass two-factor authentication. Note: In order to exploit this issue, an attacker must have a legitimate account on Horizon DaaS.",Vmware,Horizon Daas,8.8,HIGH,0.0022899999748915434,false,false,false,false,,false,false,2018-04-20T00:00:00.000Z,0
CVE-2017-4897,https://securityvulnerability.io/vulnerability/CVE-2017-4897,,VMware Horizon DaaS before 7.0.0 contains a vulnerability that exists due to insufficient validation of data. An attacker may exploit this issue by tricking DaaS client users into connecting to a malicious server and sharing all their drives and devices. Successful exploitation of this vulnerability requires a victim to download a specially crafted RDP file through DaaS client by clicking on a malicious link.,Vmware,Horizon Daas,5.5,MEDIUM,0.0009299999801442027,false,false,false,false,,false,false,2017-05-31T14:00:00.000Z,0