CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2012-3240
https://notcve.org/view.php?id=CVE-2012-3240
The Walrus service in Eucalyptus 2.0.3 and 3.0.x before 3.0.2 allows remote attackers to gain administrator privileges via a crafted REST request. El servicio Walrus en Eucalyptus v2.0.3 y v3.0.x antes de v3.0.2, permite a atacantes remotos obtener privilegios de administración a través de una petición REST. • http://secunia.com/advisories/49912 http://secunia.com/advisories/49916 http://www.eucalyptus.com/eucalyptus-cloud/security/esa-03 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2012-3241
https://notcve.org/view.php?id=CVE-2012-3241
The VMware Broker in Eucalyptus 2.0.3 and 3.0.x before 3.0.2 does not properly authenticate SOAP requests, which allows remote attackers to execute arbitrary VMware Broker API commands. El VMware Broker in Eucalyptus v2.0.3 y v3.0.x anterior a v3.0.2 no verifica correctamente las peticiones SOAP, lo que permite a atacantes remotos ejecutar comandos de la API de VMware Broker. • http://secunia.com/advisories/49912 http://secunia.com/advisories/49916 http://www.eucalyptus.com/eucalyptus-cloud/security/esa-04 • CWE-264: Permissions, Privileges, and Access Controls •