CVE-2014-8372

EUVD-2014-8209
AirWatch by VMware On-Premise 7.3.x before 7.3.3.0 (FP3) allows remote authenticated users to obtain the organizational information and statistics from arbitrary tenants via vectors involving a direct object reference.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 31%
Affected Products (NVD)
VendorProductVersion
vmwareairwatch
𝑥
≤ 7.3.3.0
vmwareairwatch
7.3.0.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://seclists.org/fulldisclosure/2014/Dec/44
http://www.vmware.com/security/advisories/VMSA-2014-0014.html
http://seclists.org/fulldisclosure/2014/Dec/44
http://www.vmware.com/security/advisories/VMSA-2014-0014.html