Unrated severityNVD Advisory· Published Oct 21, 2013· Updated Jun 16, 2026
CVE-2013-5971
CVE-2013-5971
Description
Session fixation vulnerability in the vSphere Web Client Server in VMware vCenter Server 5.0 before Update 3 allows remote attackers to hijack web sessions and gain privileges via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10cpe:2.3:a:vmware:vcenter_server:4.0.0.10021:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:a:vmware:vcenter_server:4.0.0.10021:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:vcenter_server:4.0.0.12305:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:vcenter_server:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:vcenter_server:4.1.0.12319:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:vcenter_server:4.1.0.14766:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:vcenter_server:4.1.0.17435:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:vcenter_server:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:vcenter_server:5.0:update_1:*:*:*:*:*:*
- cpe:2.3:a:vmware:vcenter_server:*:update_2_rc:*:*:*:*:*:*range: <=5.0
- (no CPE)range: < 5.0 Update 3
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.