Lucene search
VmwareCVELIST:CVE-2020-3957HistoryMay 29, 2020 - 7:37 p.m.
CVE-2020-3957
2020-05-2919:37:58
vmware
www.cve.org
3
EPSS
0
Percentile
5.1%
VMware Fusion (11.x before 11.5.5), VMware Remote Console for Mac (11.x and prior) and VMware Horizon Client for Mac (5.x and prior) contain a local privilege escalation vulnerability due to a Time-of-check Time-of-use (TOCTOU) issue in the service opener. Successful exploitation of this issue may allow attackers with normal user privileges to escalate their privileges to root on the system where Fusion, VMRC and Horizon Client are installed.
CNA Affected
[
{
"product": "VMware Fusion",
"vendor": "VMware",
"versions": [
{
"status": "affected",
"version": "11.x before 11.5.5"
}
]
},
{
"product": "VMware Remote Console for Mac",
"vendor": "VMware",
"versions": [
{
"status": "affected",
"version": "V11.x and prior"
}
]
},
{
"product": "VMware Horizon Client for Mac",
"vendor": "VMware",
"versions": [
{
"status": "affected",
"version": "5.x and prior"
}
]
}
]Related
cve
cve
CVE-2020-3957
2020-05-29 20:15:11
nvd
nvd
CVE-2020-3957
2020-05-29 20:15:11
prion
prion
Privilege escalation
2020-05-29 20:15:00
vmware
vmware
nessus
nessus
VMware Fusion 11.x < 11.5.5 Multiple Vulnerabilities (VMSA-2020-0011)
2020-06-03 00:00:00