CVE-2018-5761

Name of the Vulnerable Software and Affected Versions: Rubrik CDM versions 3.x and 4.x before 4.0.4-p2

Description: A man-in-the-middle vulnerability related to vCenter access was found. This issue might expose Rubrik user credentials configured to access vCenter because Rubrik clusters did not verify TLS certificates presented by vCenter.

Recommendations: For Rubrik CDM versions 3.x and 4.x before 4.0.4-p2, update to version 4.0.4-p2 or later to resolve the issue. As a temporary workaround, consider restricting access to vCenter until the update is applied.