VMware has issued an urgent warning advising users to uninstall the deprecated Enhanced Authentication Plugin (EAP) due to the discovery of a critical security flaw. The vulnerability, tracked as CVE-2024-22245 with a CVSS score of 9.6, has been identified as an arbitrary authentication relay bug.
According to VMware, a malicious actor could exploit the flaw to trick a target domain user with EAP installed in their web browser into requesting and relaying authentication credentials from the user’s browser to EAP-enabled web servers, potentially putting Active Directory at risk.
It is crucial for all VMware users to immediately uninstall EAP to mitigate the security risk. The latest security alert can be found here.
