← volver
CVE-2012-1513

CVE-2012-1513

EPSS 1.2%
The Web Configuration tool in VMware vCenter Orchestrator (vCO) 4.0 before Update 4, 4.1 before Update 2, and 4.2 before Update 1 places the vCenter Server password in an HTML document, which allows remote authenticated administrators to obtain sensitive information by reading this document.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://osvdb.org/80120http://secunia.com/advisories/48408https://exchange.xforce.ibmcloud.com/vulnerabilities/74091http://www.securityfocus.com/bid/52525http://www.securitytracker.com/id?1026816http://www.vmware.com/security/advisories/VMSA-2012-0005.html