5.8
CVE-2015-2336
- EPSS 0.34%
- Veröffentlicht 13.06.2015 14:59:00
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginTPView.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode before 5.4.2 on Windows does not properly allocate memory, which allows guest OS users to execute arbitrary code on the host OS via unspecified vectors, a different vulnerability than CVE-2012-0897.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
VMware ≫ Workstation Version10.0
VMware ≫ Workstation Version10.0.1
VMware ≫ Workstation Version10.0.2
VMware ≫ Workstation Version10.0.3
VMware ≫ Workstation Version10.0.4
VMware ≫ Workstation Version10.0.5
VMware ≫ Workstation Version11.0
VMware ≫ Workstation Version11.1
VMware ≫ Horizon Client Version3.2.0
VMware ≫ Horizon Client Version3.3
VMware ≫ Horizon View Client Version5.4
VMware ≫ Horizon View Client Version5.4.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.34% | 0.564 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.8 | 6.5 | 6.4 |
AV:A/AC:L/Au:N/C:P/I:P/A:P
|