{"uuid": "caa356b0-3029-4b9b-9727-8f147184504c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22245", "type": "seen", "source": "https://t.me/KomunitiSiber/1522", "content": "VMware Alert: Uninstall EAP Now - Critical Flaw Puts Active Directory at Risk\nhttps://thehackernews.com/2024/02/vmware-alert-uninstall-eap-now-critical.html\n\nVMware is urging users to uninstall the deprecated Enhanced Authentication Plugin (EAP) following the discovery of a critical security flaw.\nTracked as\u00a0CVE-2024-22245\u00a0(CVSS score: 9.6), the vulnerability has been described as an arbitrary authentication relay bug.\n\"A malicious actor could trick a target domain user with EAP installed in their web browser into requesting and relaying", "creation_timestamp": "2024-02-21T07:22:31.000000Z"}