CVE Database · CVE-2013-3520
CVSS v3.1
N/A
EPSS
55.64%
Published
Jun 17, 2013
Modified
Apr 28, 2026
Public PoC / Exploit (1)
All weaponized →Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
VMware vCenter Chargeback Manager (aka CBM) before 2.5.1 does not proper handle uploads, which allows remote attackers to execute arbitrary code via unspecified vectors.
Weaknesses (CWE)
Affected Products (7)
References (2)
