CVE-2012-1472
VMware vCenter Chargeback Manager < 2.0.1 - Arbitrary File Read and Denial of Service via XML API Requests
Title source: llmDescription
VMware vCenter Chargeback Manager (aka CBM) before 2.0.1 does not properly handle XML API requests, which allows remote attackers to read arbitrary files or cause a denial of service via unspecified vectors.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2012-0002.html
Scores
EPSS
0.0084
EPSS Percentile
74.9%
Details
CWE
CWE-20
Status
published
Products (2)
vmware/vcenter_chargeback_manager
1.6.2
vmware/vcenter_chargeback_manager
< 2.0.0
Published
Mar 13, 2012
Tracked Since
Feb 18, 2026