CVE-2016-7462 - CERT CVE
ID CVE-2016-7462
Sažetak The Suite REST API in VMware vRealize Operations (aka vROps) 6.x before 6.4.0 allows remote authenticated users to write arbitrary content to files or rename files via a crafted DiskFileItem in a relay-request payload that is mishandled during deserialization.
Reference
CVSS
Base: 7.5
Impact: 7.8
Exploitability:8.0
Pristup
VektorSloženostAutentikacija
NETWORK LOW SINGLE
Impact
PovjerljivostCjelovitostDostupnost
NONE PARTIAL COMPLETE
CVSS vektor AV:N/AC:L/Au:S/C:N/I:P/A:C
Zadnje važnije ažuriranje 28-07-2017 - 01:29
Objavljeno 29-12-2016 - 09:59