File Manipulation Vulnerability in VMware vCenter Server Appliance
CVE-2013-3080

Currently unrated

Key Information:

Vendor: Vmware
Status: Vcenter Server Appliance
Vendor: CVE Published:; 1 May 2013

Summary

VMware vCenter Server Appliance versions prior to Update 1 are susceptible to a security vulnerability that allows remote authenticated users to create or overwrite arbitrary files. This flaw is exploited via the Virtual Appliance Management Interface (VAMI) web interface, enabling potentially malicious actions including execution of arbitrary code and denial of service. Proper security measures should be taken to mitigate this risk.

References

http://www.vmware.com/security/advisories/VMSA-2013-0006....

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
May 1, 2013