Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2013-5971

Session fixation vulnerability in the vSphere Web Client Server in VMware vCenter Server 5.0 before Update 3 allows remote attackers to hijack web sessions and gain privileges via unspecified vectors.

  • Published: Oct 21, 2013
  • Updated: Apr 13, 2023
  • CVE: CVE-2013-5971
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6.8
  • AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
vmware / vcenter_server 5.0 5.0.x
vmware / vcenter_server 4.1 4.1.x
vmware / vcenter_server 4.1.0.17435 4.1.0.17435.x
vmware / vcenter_server 4.1.0.12319 4.1.0.12319.x
vmware / vcenter_server 5.0-update_1 5.0-update_1.x
vmware / vcenter_server 4.0.0.10021 4.0.0.10021.x
vmware / vcenter_server 4.1.0.14766 4.1.0.14766.x
vmware / vcenter_server 4.0.0.12305 4.0.0.12305.x
vmware / vcenter_server - 5.0.x