Username and Hashed Password Spoofing Vulnerability in Velneo vClient 28.1.3

Username and Hashed Password Spoofing Vulnerability in Velneo vClient 28.1.3

CVE-2021-45036 · HIGH Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Velneo vClient on its 28.1.3 version, could allow an attacker with knowledge of the victims's username and hashed password to spoof the victim's id against the server.

Learn more about our Cis Benchmark Audit For Server Software.