2 matches found
CVE-2013-3520
CVE-2013-3520 affects VMware vCenter Chargeback Manager (CBM) prior to 2.5.1. The vulnerability arises from improper handling of uploads in the ImageUploadServlet, enabling remote attackers to upload files and execute arbitrary code via unspecified vectors. Reported in multiple feeds (NVD/NVD-der...
CVE-2012-1472
CVE-2012-1472 affects VMware vCenter Chargeback Manager (CBM) prior to 2.0.1. The vulnerability arises from improper handling of XML API requests, allowing an unauthenticated remote attacker to read arbitrary files on the CBM server or cause a denial-of-service. VMware’s advisory and advisories n...