CVE-2014-8370
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
6.7 Medium
AI Score
Confidence
High
0.007 Low
EPSS
Percentile
80.8%
VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, VMware Fusion 6.x before 6.0.5, and VMware ESXi 5.0 through 5.5 allow host OS users to gain host OS privileges or cause a denial of service (arbitrary write to a file) by modifying a configuration file.
Affected configurations
References
jvn.jp/en/jp/JVN88252465/index.html
jvndb.jvn.jp/jvndb/JVNDB-2015-000007
secunia.com/advisories/62551
secunia.com/advisories/62605
secunia.com/advisories/62669
www.securityfocus.com/bid/72338
www.securitytracker.com/id/1031642
www.securitytracker.com/id/1031643
www.vmware.com/security/advisories/VMSA-2015-0001.html
exchange.xforce.ibmcloud.com/vulnerabilities/100933
Related
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
6.7 Medium
AI Score
Confidence
High
0.007 Low
EPSS
Percentile
80.8%