The VMware Broker in Eucalyptus 2.0.3 and 3.0.x prior to 3.0.2 does not properly authenticate SOAP requests, which allows remote malicious users to execute arbitrary VMware Broker API commands.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
eucalyptus eucalyptus 2.0.3 |
||
eucalyptus eucalyptus 3.0.1 |