Reversible Encryption Vulnerability in VMware vSphere Data Protection (VDP)

Reversible Encryption Vulnerability in VMware vSphere Data Protection (VDP)

CVE-2017-4917 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

VMware vSphere Data Protection (VDP) 6.1.x, 6.0.x, 5.8.x, and 5.5.x locally stores vCenter Server credentials using reversible encryption. This issue may allow plaintext credentials to be obtained.

Learn more about our Cis Benchmark Audit For Server Software.