VulnRecap 2/26/24 – VMWare, Apple, ScreenConnect Face Risks
eSecurity Planet
FEBRUARY 26, 2024
The problem: CVE-2024-22245 and CVE-2024-22250 put Windows domains vulnerable to authentication relay and session hijack attacks. The fix: System administrators must remove both the in-browser plug-in/client (VMware Enhanced Authentication Plug-in 6.7.0) and the Windows service (VMware Plug-in Service). and iPadOS 17.3.
Let's personalize your content