CVE-2013-3520

HIGH

VMware vCenter Chargeback Manager (aka CBM) before 2.5.1 does not proper handle uploads, which allows remote attackers to execute arbitrary code via unspecified vectors.

CVSS v2.0 Score

7.5

/ 10.0

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:P

Information

Published: 17 juin 2013
Updated: 29 avr. 2026
Status: Modified
Source: cve@mitre.org

Affected products

vmware vcenter chargeback manager

Versions : 2.5.0, 1.5.0, 1.6.0, 1.6.1, 1.6.2

Weaknesses (CWE)

CWE-94

References (2)

http://www.vmware.com/security/advisories/VMSA-2013-0008.html
Vendor Advisory
http://www.vmware.com/security/advisories/VMSA-2013-0008.html
Vendor Advisory

Similar CVEs

Other vulnerabilities of type CWE-94

Loading…

Monitor your products

Get automatic alerts for every new CVE affecting your equipment.

Enable monitoring