CVE-2018-6959

VMware vRealize Automation (vRA) prior to 7.4.0 contains a vulnerability in the handling of session IDs. Exploitation of this issue may lead to the hijacking of a valid vRA user’s session.

Date published : 2018-04-13

http://www.securityfocus.com/bid/103752

http://www.vmware.com/security/advisories/VMSA-2018-0009.html