Remote Command Execution Vulnerability in VMware vCenter Server Appliance
CVE-2014-3790

Currently unrated

Key Information:

Vendor
Vmware
Vendor
CVE Published:
1 June 2014

Summary

The Ruby vSphere Console (RVC) in VMware vCenter Server Appliance has a security flaw that permits remote authenticated users to execute arbitrary commands as root. This issue arises due to improper isolation within the chroot jail environment, which could be exploited to perform unauthorized actions within the system.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.