CVE-2019-5513

Name of the Vulnerable Software and Affected Versions VMware Horizon Connection Server versions 7.x before 7.8 VMware Horizon Connection Server versions 7.5.x before 7.5.2 VMware Horizon Connection Server versions 6.x before 6.2.8

Description The issue is related to an information disclosure vulnerability in VMware Horizon Connection Server. Successful exploitation of this issue may allow disclosure of internal domain names, the Connection Server’s internal name, or the gateway’s internal IP address. The vulnerability is associated with a lack of protection for service data, which could allow a remote attacker to gain unauthorized access to protected information.

Recommendations For versions 7.x before 7.8, update to version 7.8 or later. For versions 7.5.x before 7.5.2, update to version 7.5.2 or later. For versions 6.x before 6.2.8, update to version 6.2.8 or later.