+- (https://hackmyride.com/forum)
+-- Forum: Automotive Hacking (https://hackmyride.com/forum/forumdisplay.php?fid=211)
+--- Forum: News (https://hackmyride.com/forum/forumdisplay.php?fid=278)
+---- Forum: The Hacker News (https://hackmyride.com/forum/forumdisplay.php?fid=279)
+---- Thread: Hacking News VMware Alert: Uninstall EAP Now - Critical Flaw Puts Active Directory at Risk (/showthread.php?tid=13752)
VMware Alert: Uninstall EAP Now - Critical Flaw Puts Active Directory at Risk - The Hacker News - 02-24-2024
VMware Alert: Uninstall EAP Now - Critical Flaw Puts Active Directory at Risk
VMware is urging users to uninstall the deprecated Enhanced Authentication Plugin (EAP) following the discovery of a critical security flaw.
Tracked as CVE-2024-22245 (CVSS score: 9.6), the vulnerability has been described as an arbitrary authentication relay bug.
"A malicious actor could trick a target domain user with EAP installed in their web browser into requesting and relaying
https://thehackernews.com/2024/02/vmware-alert-uninstall-eap-now-critical.html