High severity7.8NVD Advisory· Published Jul 25, 2018· Updated Jun 17, 2026
CVE-2018-6971
CVE-2018-6971
Description
VMware Horizon View Agents (7.x.x before 7.5.1) contain a local information disclosure vulnerability due to insecure logging of credentials in the vmmsi.log file when an account other than the currently logged on user is specified during installation (including silent installations). Successful exploitation of this issue may allow low privileged users access to the credentials specified during the Horizon View Agent installation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2>=7.0.0, <7.5.1+ 1 more
- (no CPE)range: >=7.0.0, <7.5.1
- (no CPE)range: 7.x.x before 7.5.1
Patches
Vulnerability mechanics
References
4- www.securityfocus.com/bid/104883nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1041357nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1041358nvdThird Party AdvisoryVDB Entry
- www.vmware.com/security/advisories/VMSA-2018-0018.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.