CVE-2012-6325
VMware vCenter Server Appliance < 5.0 Update 2 - Authenticated Arbitrary File Read via XML Parsing
Title source: llmDescription
VMware vCenter Server Appliance (vCSA) 5.0 before Update 2 does not properly parse XML documents, which allows remote authenticated users to read arbitrary files via unspecified vectors.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2012-0018.html
Scores
EPSS
0.0014
EPSS Percentile
34.3%
Details
CWE
CWE-200
Status
published
Products (2)
vmware/vcenter_server_appliance
5.0
vmware/vcenter_server_appliance
< 5.0
Published
Dec 21, 2012
Tracked Since
Feb 18, 2026