← back
CVE-2013-3520

CVE-2013-3520

50Vexday Risk Score

Patch soon. It has a working public exploit.

ssvc Attendepss 56%
from disclosure to weapon36 days
Published on NVDJun 17
1st PoC+36d
metasploitMay 15
exploitation probability
56%top 1% of all CVEs
observed exploitation
nono source reports it
1 public exploit(s)
VMware vCenter Chargeback Manager (aka CBM) before 2.5.1 does not proper handle uploads, which allows remote attackers to execute arbitrary code via unspecified vectors.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.