File Manipulation Vulnerability in VMware vCenter Server Appliance
CVE-2013-3080

Currently unrated

Key Information:

Vendor
Vmware
Vendor
CVE Published:
1 May 2013

Summary

VMware vCenter Server Appliance versions prior to Update 1 are susceptible to a security vulnerability that allows remote authenticated users to create or overwrite arbitrary files. This flaw is exploited via the Virtual Appliance Management Interface (VAMI) web interface, enabling potentially malicious actions including execution of arbitrary code and denial of service. Proper security measures should be taken to mitigate this risk.

References

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.