Описание
Directory traversal vulnerability in vCenter Server in VMware vCenter 4.0 before Update 3 and 4.1 before Update 1, and VMware VirtualCenter 2.5 before Update 6a, allows remote attackers to read arbitrary files via unspecified vectors.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:vmware:vcenter:4.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:vcenter:4.0:update_1:*:*:*:*:*:*
cpe:2.3:a:vmware:vcenter:4.0:update_2:*:*:*:*:*:*
cpe:2.3:a:vmware:vcenter:4.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:virtualcenter:2.5:update_1:*:*:*:*:*:*
cpe:2.3:a:vmware:virtualcenter:2.5:update_2:*:*:*:*:*:*
cpe:2.3:a:vmware:virtualcenter:2.5:update_3:*:*:*:*:*:*
cpe:2.3:a:vmware:virtualcenter:2.5:update_4:*:*:*:*:*:*
cpe:2.3:a:vmware:virtualcenter:2.5:update_5:*:*:*:*:*:*
cpe:2.3:a:vmware:virtualcenter:2.5:update_6:*:*:*:*:*:*
EPSS
Процентиль: 33%
0.0013
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
больше 3 лет назад
Directory traversal vulnerability in vCenter Server in VMware vCenter 4.0 before Update 3 and 4.1 before Update 1, and VMware VirtualCenter 2.5 before Update 6a, allows remote attackers to read arbitrary files via unspecified vectors.
EPSS
Процентиль: 33%
0.0013
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-22