Vulnerabilities > Vmware > Vcenter Server Appliance

DATE CVE VULNERABILITY TITLE RISK
2012-12-21 CVE-2012-6325 Information Exposure vulnerability in VMWare Vcenter Server Appliance 5.0
VMware vCenter Server Appliance (vCSA) 5.0 before Update 2 does not properly parse XML documents, which allows remote authenticated users to read arbitrary files via unspecified vectors.
network
low complexity
vmware CWE-200
4.0
4.0
2012-12-21 CVE-2012-6324 Path Traversal vulnerability in VMWare Vcenter Server Appliance 5.0/5.1
Directory traversal vulnerability in VMware vCenter Server Appliance (vCSA) 5.0 before Update 2 and 5.1 before Patch 1 allows remote authenticated users to read arbitrary files via unspecified vectors.
network
low complexity
vmware CWE-22
4.0
4.0