Page 4 of 31 results (0.002 seconds)
CVSS: 10.0EPSS: 2%CPEs: 2EXPL: 0
CVSS: 10.0EPSS: 2%CPEs: 2EXPL: 0CVE-2012-4501
https://notcve.org/view.php?id=CVE-2012-4501
26 Oct 2012 — Citrix Cloud.com CloudStack, and Apache CloudStack pre-release, allows remote attackers to make arbitrary API calls by leveraging the system user account, as demonstrated by API calls to delete VMs. Citrix Cloud.com CloudStack, y Apache CloudStack pre-release, permite a atacantes remotos a realizar llamadas a la API aprovechando la cuenta system, como se demostró mediante llamadas a la API para eliminar VMs. • http://archives.neohapsis.com/archives/bugtraq/2012-10/0062.html • CWE-264: Permissions, Privileges, and Access Controls •