CVE-2016-7087

MEDIUM

Vmware Horizon View - Path Traversal

Title source: rule

Description

Directory traversal vulnerability in the Connection Server in VMware Horizon View 5.x before 5.3.7, 6.x before 6.2.3, and 7.x before 7.0.1 allows remote attackers to obtain sensitive information via unspecified vectors.

References (3)

Scores

CVSS v3 5.3
EPSS 0.0295
EPSS Percentile 86.3%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Classification

CWE
CWE-22
Status published

Affected Products (13)

vmware/horizon_view
vmware/horizon_view
vmware/horizon_view
vmware/horizon_view
vmware/horizon_view
vmware/horizon_view
vmware/horizon_view
vmware/horizon_view
vmware/horizon_view
vmware/horizon_view
vmware/horizon_view
vmware/horizon_view
n/a/n/a

Timeline

Published Dec 29, 2016
Tracked Since Feb 18, 2026