Vulnerabilities > Vmware > Horizon Daas > 7.0.0

DATE CVE VULNERABILITY TITLE RISK
2020-09-22 CVE-2020-3977 Missing Authentication for Critical Function vulnerability in VMWare Horizon Daas 7.0.0/8.0.0/8.0.1
VMware Horizon DaaS (7.x and 8.x before 8.0.1 Update 1) contains a broken authentication vulnerability due to a flaw in the way it handled the first factor authentication.
network
low complexity
vmware CWE-306
6.5
2018-04-20 CVE-2018-6960 Improper Authentication vulnerability in VMWare Horizon Daas 7.0.0
VMware Horizon DaaS (7.x before 8.0.0) contains a broken authentication vulnerability that may allow an attacker to bypass two-factor authentication.
network
low complexity
vmware CWE-287
8.8