CVE-2011-0426

CWE-22Path Traversal4 documents4 sources
Severity
4.3MEDIUM
EPSS
0.1%
top 67.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Vmware VcenterVmware Virtualcenter
Timeline
PublishedMay 9
Latest updateMay 17

Description

Directory traversal vulnerability in vCenter Server in VMware vCenter 4.0 before Update 3 and 4.1 before Update 1, and VMware VirtualCenter 2.5 before Update 6a, allows remote attackers to read arbitrary files via unspecified vectors.

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages2 packages

NVDvmware/vcenter4.0, 4.1+1

🔴Vulnerability Details

2
GHSA
GHSA-c4pp-r7mc-7fj9: Directory traversal vulnerability in vCenter Server in VMware vCenter 42022-05-17
CVEList
CVE-2011-0426: Directory traversal vulnerability in vCenter Server in VMware vCenter 42011-05-09

💬Community

1
Bugzilla
CVE-2011-0012 spice-xpi: symlink attack on usbrdrctl log file2010-10-04
CVE-2011-0426 (MEDIUM CVSS 4.3) | Directory traversal vulnerability i | cvebase.io