6.5

CVE-2015-6933

EPSS 1.81%
Veröffentlicht 09.01.2016 02:59:00
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

The VMware Tools HGFS (aka Shared Folders) implementation in VMware Workstation 11.x before 11.1.2, VMware Player 7.x before 7.1.2, VMware Fusion 7.x before 7.1.2, and VMware ESXi 5.0 through 6.0 allows Windows guest OS users to gain guest OS privileges or cause a denial of service (guest OS kernel memory corruption) via unspecified vectors.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

VMware ≫ Player Version7.0

VMware ≫ Player Version7.1

VMware ≫ Player Version7.1.1

VMware ≫ Workstation Version11.0

VMware ≫ Workstation Version11.1

VMware ≫ Workstation Version11.1.1

VMware ≫ ESXi Version5.0

VMware ≫ ESXi Version5.0 Update1

VMware ≫ ESXi Version5.0 Update2

VMware ≫ ESXi Version5.1

VMware ≫ ESXi Version5.1 Update1

VMware ≫ ESXi Version5.5

VMware ≫ ESXi Version6.0

VMware ≫ Fusion Version7.0

VMware ≫ Fusion Version7.1

VMware ≫ Fusion Version7.1.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.81%	0.822

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.3	2.8	3.4	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
nvd@nist.gov	6.5	8	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P

CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

http://www.securitytracker.com/id/1034603

http://www.securitytracker.com/id/1034604

http://www.vmware.com/security/advisories/VMSA-2016-0001.html

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2015-6933

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2015-6933

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2015-6933

EUVD