Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:60530
HistoryDec 24, 2012 - 12:00 a.m.

vCenter Server Appliance任意文件下载漏洞

2012-12-2400:00:00
Root
www.seebug.org
14

0.001 Low

EPSS

Percentile

46.3%

JSON

Bugtraq ID:57022
CVE ID:CVE-2012-6325

VMware vCenter Server可以快速部署虚拟机,并监控物理服务器和虚拟机的性能,可通过单个界面部署、监控和管理虚拟化IT 环境,并确保最佳的服务级别。

vCenter Server Appliance存在一个XML解析漏洞,通过XML文件传递的输入在用于下载文件之前缺少校验,允许通过验证的远程用户获得系统任意文件。
0
VMware vCenter Server Appliance 5.x
厂商解决方案

VMware vCenter Server Appliance 5.1和vCenter Server Appliance 5.0 Update 2已经修复此漏洞,建议用户下载使用:
http://www.vmware.com/

Related

cve 1
prion 1
securityvulns 2
openvas 2
vmware 2
nessus 1
cve
cve
CVE-2012-6325
2012-12-21 21:55:00
prion
prion
Design/Logic Flaw
2012-12-21 21:55:00
securityvulns
securityvulns
VMWare vCSA/ESXi multiple security vulnerabilities
2013-01-02 00:00:00
VMSA-2012-0018 VMware security updates for vCSA and ESXi
2013-01-02 00:00:00
openvas
openvas
VMSA-2012-0018: VMware security updates for vCSA and ESXi
2012-12-27 00:00:00
VMware ESXi/ESX security updates (VMSA-2012-0018)
2012-12-27 00:00:00
vmware
vmware
VMware security updates for vCSA, vCenter Server, and ESXi
2012-12-20 00:00:00
VMware security updates for vCSA, vCenter Server, and ESXi
2012-12-20 00:00:00
nessus
nessus
VMSA-2012-0018 : VMware security updates for vCSA and ESXi
2012-12-24 00:00:00

0.001 Low

EPSS

Percentile

46.3%

JSON
Related for SSV:60530
cve1prion1securityvulns2openvas2vmware2nessus1