Description

VMware vCenter Server is an advanced server management software that provides a centralized platform for controlling VMware vSphere environments.

VMware vCenter (versions before 6.5u1) is vulnerable to an arbitrary file read vulnerability that allows an unauthenticated attacker to abuse VMware vCenter to read local system files.

Remediation

Upgrade to the latest version of VMware vCenter (this issue was fixed in version 6.5u1).

References

Related Vulnerabilities