Improper input validation in Vmware Vcenter_chargeback_manager

CVE-2012-1472

VMware vCenter Chargeback Manager (aka CBM) before 2.0.1 does not properly handle XML API requests, which allows remote attackers to read arbitrary files or cause a denial of service via unspecified vectors.

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.008 (75.0th percentile) — read the EPSS interpretation.