2.1

CVE-2011-2146

EPSS 0.08%
Veröffentlicht 06.06.2011 19:55:02
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x before 7.1.4, VMware Player 3.1.x before 3.1.4, VMware Fusion 3.1.x before 3.1.3, VMware ESXi 3.5 through 4.1, and VMware ESX 3.0.3 through 4.1 allows guest OS users to determine the existence of host OS files and directories via unspecified vectors.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 10

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

VMware ≫ Workstation Version7.1.1

VMware ≫ Workstation Version7.1.2

VMware ≫ Workstation Version7.1.3

VMware ≫ Player Version3.1

VMware ≫ Player Version3.1.1

VMware ≫ Player Version3.1.2

VMware ≫ Player Version3.1.3

VMware ≫ Fusion Version3.1

VMware ≫ Fusion Version3.1.1

VMware ≫ Fusion Version3.1.2

VMware ≫ Esx Version3.0.3

VMware ≫ Esx Version3.5

VMware ≫ Esx Version4.0

VMware ≫ Esx Version4.1

VMware ≫ Esxi Version3.5

VMware ≫ Esxi Version4.0

VMware ≫ Esxi Version4.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.08%	0.253

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	2.1	3.9	2.9	AV:L/AC:L/Au:N/C:P/I:N/A:N

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

http://www.vmware.com/security/advisories/VMSA-2011-0009.html

Patch

Vendor Advisory

http://secunia.com/advisories/44904

https://hermes.opensuse.org/messages/8711677

http://secunia.com/advisories/44840

http://www.securityfocus.com/bid/48098

http://www.securitytracker.com/id?1025601

https://exchange.xforce.ibmcloud.com/vulnerabilities/67813

https://nvd.nist.gov/vuln/detail/CVE-2011-2146

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2011-2146

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2011-2146

EUVD