This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote host has a virtualization appliance installed that is
affected by a cross-site request forgery vulnerability.
The version of VMware vCloud Director installed on the remote host is
5.1.x prior to 5.1.3. It is, therefore, potentially affected by a
cross-site request forgery (CSRF) vulnerability. An error exists in the
HTTP session management that could allow an attacker to log a victim
Note that the victimized user would be able to immediately log back into
Upgrade to VMware vCloud Director 5.1.3 or later.
Risk factor :
Medium / CVSS Base Score : 6.8
CVSS Temporal Score : 5.9
Public Exploit Available : true