CVE-2012-6324

Vmware Vcenter Server Appliance - Path Traversal

Title source: rule

Description

Directory traversal vulnerability in VMware vCenter Server Appliance (vCSA) 5.0 before Update 2 and 5.1 before Patch 1 allows remote authenticated users to read arbitrary files via unspecified vectors.

References (1)

[Vendor Advisory] http://www.vmware.com/security/advisories/VMSA-2012-0018.html

Scores

EPSS 0.0012

EPSS Percentile 31.1%

Classification

CWE

CWE-22

Status draft

Affected Products (4)

vmware/vcenter_server_appliance

Timeline

Published Dec 21, 2012

Tracked Since Feb 18, 2026