6.5

CVE-2015-6933

EPSS 1.81%
Published 09.01.2016 02:59:00
Last modified 12.04.2025 10:46:40
Source cve@mitre.org
Teams watchlist Login
Open Login

The VMware Tools HGFS (aka Shared Folders) implementation in VMware Workstation 11.x before 11.1.2, VMware Player 7.x before 7.1.2, VMware Fusion 7.x before 7.1.2, and VMware ESXi 5.0 through 6.0 allows Windows guest OS users to gain guest OS privileges or cause a denial of service (guest OS kernel memory corruption) via unspecified vectors.

Affected products Warnungen 0 Metrics 3 CWE 1 References 6

Data is provided by the National Vulnerability Database (NVD)

VMware ≫ Player Version7.0

VMware ≫ Player Version7.1

VMware ≫ Player Version7.1.1

VMware ≫ Workstation Version11.0

VMware ≫ Workstation Version11.1

VMware ≫ Workstation Version11.1.1

VMware ≫ ESXi Version5.0

VMware ≫ ESXi Version5.0 Update1

VMware ≫ ESXi Version5.0 Update2

VMware ≫ ESXi Version5.1

VMware ≫ ESXi Version5.1 Update1

VMware ≫ ESXi Version5.5

VMware ≫ ESXi Version6.0

VMware ≫ Fusion Version7.0

VMware ≫ Fusion Version7.1

VMware ≫ Fusion Version7.1.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.81%	0.822

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.3	2.8	3.4	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
nvd@nist.gov	6.5	8	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P

CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

http://www.securitytracker.com/id/1034603

http://www.securitytracker.com/id/1034604

http://www.vmware.com/security/advisories/VMSA-2016-0001.html

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2015-6933

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2015-6933

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2015-6933

EUVD