6.4

CVE-2014-8370

VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, VMware Fusion 6.x before 6.0.5, and VMware ESXi 5.0 through 5.5 allow host OS users to gain host OS privileges or cause a denial of service (arbitrary write to a file) by modifying a configuration file.

Data is provided by the National Vulnerability Database (NVD)
VMwarePlayer Version6.0
VMwarePlayer Version6.0.1
VMwarePlayer Version6.0.2
VMwarePlayer Version6.0.3
VMwarePlayer Version6.0.4
VMwareFusion Version6.0
VMwareFusion Version6.0.1
VMwareFusion Version6.0.2
VMwareFusion Version6.0.3
VMwareFusion Version6.0.4
VMwareWorkstation Version10.0
VMwareWorkstation Version10.0.1
VMwareWorkstation Version10.0.2
VMwareWorkstation Version10.0.3
VMwareWorkstation Version10.0.4
VMwareESXi Version5.0
VMwareESXi Version5.0 Update1
VMwareESXi Version5.0 Update2
VMwareESXi Version5.1
VMwareESXi Version5.1 Update1
VMwareESXi Version5.5
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 1.04% 0.765
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 6.4 10 4.9
AV:N/AC:L/Au:N/C:N/I:P/A:P
http://jvn.jp/en/jp/JVN88252465/index.html
Third Party Advisory
VDB Entry
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000007
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/72338
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1031642
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1031643
Third Party Advisory
VDB Entry