VMware vCenter Chargeback Manager (aka CBM) before 2.5.1 does not proper handle uploads, which allows remote attackers to execute arbitrary code via unspecified vectors.
CVSS v2.0 Score
7.5
/ 10.0
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Information
- Published
- 17 juin 2013
- Updated
- 29 avr. 2026
- Status
- Modified
- Source
- cve@mitre.org
Affected products
vmware vcenter chargeback manager
Versions : 2.5.0, 1.5.0, 1.6.0, 1.6.1, 1.6.2
Weaknesses (CWE)
CWE-94
References (2)
Similar CVEs
Other vulnerabilities of type CWE-94
Loading…
Monitor your products
Get automatic alerts for every new CVE affecting your equipment.