Vulnerabilities > Vmware > Tanzu Gemfire FOR Virtual Machines > High

DATE CVE VULNERABILITY TITLE RISK
2020-07-31 CVE-2020-5396 Missing Authorization vulnerability in VMWare Gemfire and Tanzu Gemfire for Virtual Machines
VMware GemFire versions prior to 9.10.0, 9.9.2, 9.8.7, and 9.7.6, and VMware Tanzu GemFire for VMs versions prior to 1.11.1 and 1.10.2, when deployed without a SecurityManager, contain a JMX service available which contains an insecure default configuration.
network
low complexity
vmware CWE-862
8.8