Lucene search
HistoryOct 03, 2022 - 4:14 p.m.
CVE-2013-3520
cve-2013-3520
vmware
vcenter
chargeback manager
cbm
remote code execution
security vulnerability
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
Low
0.923 High
EPSS
Percentile
99.0%
VMware vCenter Chargeback Manager (aka CBM) before 2.5.1 does not proper handle uploads, which allows remote attackers to execute arbitrary code via unspecified vectors.
Affected configurations
Node
vmwarevcenter_chargeback_managerRange≤2.5.0
ORvmwarevcenter_chargeback_managerMatch1.5.0
ORvmwarevcenter_chargeback_managerMatch1.6.0
ORvmwarevcenter_chargeback_managerMatch1.6.1
ORvmwarevcenter_chargeback_managerMatch1.6.2
ORvmwarevcenter_chargeback_managerMatch2.0.0
ORvmwarevcenter_chargeback_managerMatch2.0.1
Related
nvd
nvd
CVE-2013-3520
2013-06-17 03:29:45
cvelist
cvelist
CVE-2013-3520
2022-10-03 16:14:45
zdi
zdi
checkpoint_advisories
checkpoint_advisories
nessus
nessus
VMware vCenter Chargeback Manager Remote Code Execution (VMSA-2013-0008)
2013-06-14 00:00:00
packetstorm
packetstorm
VMware vCenter Chargeback Manager ImageUploadServlet Arbitrary File Upload
2013-07-23 00:00:00
vmware
vmware
VMware vCenter Chargeback Manager Remote Code Execution
2013-06-11 00:00:00
zdt
zdt
VMware vCenter Chargeback Manager ImageUploadServlet Arbitrary File Upload
2013-07-23 00:00:00
prion
prion
Code injection
2013-06-17 03:29:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
Low
0.923 High
EPSS
Percentile
99.0%
Related for CVE-2013-3520