CVE-2013-3080

Name of the Vulnerable Software and Affected Versions VMware vCenter Server Appliance (vCSA) versions 5.1 before Update 1

Description The issue allows remote authenticated users to create or overwrite arbitrary files, and consequently execute arbitrary code or cause a denial of service. This is achieved by leveraging Virtual Appliance Management Interface (VAMI) web-interface access.

Recommendations For versions 5.1 before Update 1, apply Update 1 to resolve the issue. As a temporary workaround, consider restricting access to the VAMI web-interface to minimize the risk of exploitation.