Authentication Bypass Vulnerability in VMware Broker API

Authentication Bypass Vulnerability in VMware Broker API

CVE-2012-3241 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The VMware Broker in Eucalyptus 2.0.3 and 3.0.x before 3.0.2 does not properly authenticate SOAP requests, which allows remote attackers to execute arbitrary VMware Broker API commands.

Learn more about our Cis Benchmark Audit For Vmware.