Information disclosure in Vmware Vcenter_orchestrator

CVE-2012-1513

The Web Configuration tool in VMware vCenter Orchestrator (vCO) 4.0 before Update 4, 4.1 before Update 2, and 4.2 before Update 1 places the vCenter Server password in an HTML document, which allows remote authenticated administrators to o…

Vulnerability class: Information Disclosure

EPSS: 0.012 (64.6th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References