XML API Request Handling Flaw in VMware vCenter Chargeback Manager
CVE-2012-1472

Currently unrated

Key Information:

Vendor: Vmware
Status: Vcenter Chargeback Manager
Vendor: CVE Published:; 13 March 2012

Summary

The VMware vCenter Chargeback Manager prior to version 2.0.1 contains a vulnerability that improperly handles XML API requests. This flaw may allow remote attackers to exploit the system, leading to unauthorized access to arbitrary files or potential denial of service situations. Organizations using affected versions of this software should review their security protocols and apply necessary updates to mitigate risks.

References

http://www.vmware.com/security/advisories/VMSA-2012-0002....

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Mar 13, 2012