PT-2012-6265 · Vmware · Vmware Vcenter Server Appliance
Published
2012-12-21
·
Updated
2013-01-08
·
CVE-2012-6325
CVSS v2.0
4.0
Medium
| Vector | AV:N/AC:L/Au:S/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
VMware vCenter Server Appliance (vCSA) versions 5.0 before Update 2
Description
The issue is related to improper parsing of XML documents, allowing remote authenticated users to read arbitrary files.
Recommendations
For versions 5.0 before Update 2, apply Update 2 to resolve the issue.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Vmware Vcenter Server Appliance