CVE-2013-3080

VMware vCenter Server Appliance <5.1 - RCE

Title source: llm

Description

VMware vCenter Server Appliance (vCSA) 5.1 before Update 1 allows remote authenticated users to create or overwrite arbitrary files, and consequently execute arbitrary code or cause a denial of service, by leveraging Virtual Appliance Management Interface (VAMI) web-interface access.

References (1)

[Vendor Advisory] http://www.vmware.com/security/advisories/VMSA-2013-0006.html

Scores

EPSS 0.0126

EPSS Percentile 79.2%

Classification

CWE

CWE-264

Status draft

Affected Products (1)

vmware/vcenter_server_appliance

Timeline

Published May 01, 2013

Tracked Since Feb 18, 2026