Security News > 2024 > February > VMware Alert: Uninstall EAP Now - Critical Flaw Puts Active Directory at Risk
2024-02-21 05:34
VMware is urging users to uninstall the deprecated Enhanced Authentication Plugin (EAP) following the discovery of a critical security flaw. Tracked as CVE-2024-22245 (CVSS score: 9.6), the vulnerability has been described as an arbitrary authentication relay bug. "A malicious actor could trick a target domain user with EAP installed in their web browser into requesting and relaying
News URL
https://thehackernews.com/2024/02/vmware-alert-uninstall-eap-now-critical.html