CVE-2016-2079

MEDIUM

Vmware Nsx Edge - Information Disclosure

Title source: rule

Description

VMware NSX Edge 6.1 before 6.1.7 and 6.2 before 6.2.3 and vCNS Edge 5.5 before 5.5.4.3, when the SSL-VPN feature is configured, allow remote attackers to obtain sensitive information via unspecified vectors.

References (2)

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1036077

[Patch, Vendor Advisory] http://www.vmware.com/security/advisories/VMSA-2016-0007.html

Scores

CVSS v3 5.9

EPSS 0.0039

EPSS Percentile 59.8%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Classification

CWE

CWE-200

Status draft

Affected Products (16)

vmware/nsx_edge

vmware/vcloud_networking_and_security_edge

... and 1 more

Timeline

Published Jul 03, 2016

Tracked Since Feb 18, 2026