CVE-2010-2667

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.vupen.com/english/advisories/2010/1791", "name": "ADV-2010-1791", "tags": ["Vendor Advisory"], "refsource": "VUPEN"}, {"url": "http://lists.vmware.com/pipermail/security-announce/2010/000101.html", "name": "[security-announce] 20100712 VMSA-2010-0011 VMware Studio 2.1 addresses security vulnerabilities in virtual appliances created with Studio 2.0", "tags": ["Patch"], "refsource": "MLIST"}, {"url": "http://www.securityfocus.com/bid/41566", "name": "41566", "tags": [], "refsource": "BID"}, {"url": "http://securitytracker.com/id?1024187", "name": "1024187", "tags": [], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/40507", "name": "40507", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.wmware.com/security/advisories/VMSA-2010-0011.html", "name": "http://www.wmware.com/security/advisories/VMSA-2010-0011.html", "tags": ["Patch", "Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/60350", "name": "studio-vami-command-execution(60350)", "tags": [], "refsource": "XF"}, {"url": "http://www.securityfocus.com/archive/1/512311/100/0/threaded", "name": "20100713 VMSA-2010-0011 VMware Studio 2.1 addresses security vulnerabilities in virtual appliances created with Studio 2.0.", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in the Virtual Appliance Management Infrastructure (VAMI) in VMware Studio 2.0 allow remote authenticated users to execute arbitrary commands via vectors involving (1) the Studio virtual appliance or (2) a virtual appliance created by the Studio virtual appliance."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2010-2667", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 6.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 6.8, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2010-07-22T05:43Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:vmware:studio:2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-10T19:59Z"}