VYPR
Unrated severityNVD Advisory· Published Oct 21, 2013· Updated Jun 16, 2026

CVE-2013-5971

CVE-2013-5971

Description

Session fixation vulnerability in the vSphere Web Client Server in VMware vCenter Server 5.0 before Update 3 allows remote attackers to hijack web sessions and gain privileges via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • cpe:2.3:a:vmware:vcenter_server:4.0.0.10021:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:vmware:vcenter_server:4.0.0.10021:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:vcenter_server:4.0.0.12305:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:vcenter_server:4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:vcenter_server:4.1.0.12319:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:vcenter_server:4.1.0.14766:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:vcenter_server:4.1.0.17435:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:vcenter_server:5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:vcenter_server:5.0:update_1:*:*:*:*:*:*
    • cpe:2.3:a:vmware:vcenter_server:*:update_2_rc:*:*:*:*:*:*range: <=5.0
    • (no CPE)range: < 5.0 Update 3

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.