Lucene search

[email protected]NVD:CVE-2020-3958

HistoryMay 29, 2020 - 8:15 p.m.

CVE-2020-3958

2020-05-2920:15:11

CWE-617

[email protected]

web.nvd.nist.gov

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.5

Confidence

High

EPSS

Percentile

12.6%

JSON

VMware ESXi (6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), VMware Workstation (15.x before 15.5.2) and VMware Fusion (11.x before 11.5.2) contain a denial-of-service vulnerability in the shader functionality. Successful exploitation of this issue may allow attackers with non-administrative access to a virtual machine to crash the virtual machine’s vmx process leading to a denial of service condition.

Affected configurations

Nvd

Node

vmwarefusionRange11.0.0–11.5.2

vmwareworkstationRange15.0.0–15.5.2

Node

vmwareesxiMatch6.5-

vmwareesxiMatch6.5650-201701001

vmwareesxiMatch6.5650-201703001

vmwareesxiMatch6.5650-201703002

vmwareesxiMatch6.5650-201704001

vmwareesxiMatch6.5650-201707101

vmwareesxiMatch6.5650-201707102

vmwareesxiMatch6.5650-201707103

vmwareesxiMatch6.5650-201707201

vmwareesxiMatch6.5650-201707202

vmwareesxiMatch6.5650-201707203

vmwareesxiMatch6.5650-201707204

vmwareesxiMatch6.5650-201707205

vmwareesxiMatch6.5650-201707206

vmwareesxiMatch6.5650-201707207

vmwareesxiMatch6.5650-201707208

vmwareesxiMatch6.5650-201707209

vmwareesxiMatch6.5650-201707210

vmwareesxiMatch6.5650-201707211

vmwareesxiMatch6.5650-201707212

vmwareesxiMatch6.5650-201707213

vmwareesxiMatch6.5650-201707214

vmwareesxiMatch6.5650-201707215

vmwareesxiMatch6.5650-201707216

vmwareesxiMatch6.5650-201707217

vmwareesxiMatch6.5650-201707218

vmwareesxiMatch6.5650-201707219

vmwareesxiMatch6.5650-201707220

vmwareesxiMatch6.5650-201707221

vmwareesxiMatch6.5650-201710001

vmwareesxiMatch6.5650-201712001

vmwareesxiMatch6.5650-201803001

vmwareesxiMatch6.5650-201806001

vmwareesxiMatch6.5650-201808001

vmwareesxiMatch6.5650-201810001

vmwareesxiMatch6.5650-201810002

vmwareesxiMatch6.5650-201811001

vmwareesxiMatch6.5650-201811002

vmwareesxiMatch6.5650-201811301

vmwareesxiMatch6.5650-201901001

vmwareesxiMatch6.5650-201903001

vmwareesxiMatch6.5650-201905001

vmwareesxiMatch6.5650-201908001

vmwareesxiMatch6.5650-201910001

vmwareesxiMatch6.5650-20191004001

vmwareesxiMatch6.5650-201911001

vmwareesxiMatch6.5650-201911401

vmwareesxiMatch6.5650-201911402

vmwareesxiMatch6.5650-201912001

vmwareesxiMatch6.5650-201912002

vmwareesxiMatch6.5650-201912101

vmwareesxiMatch6.5650-201912102

vmwareesxiMatch6.5650-201912103

vmwareesxiMatch6.5650-201912104

vmwareesxiMatch6.5650-201912301

vmwareesxiMatch6.5650-201912401

vmwareesxiMatch6.5650-201912402

vmwareesxiMatch6.5650-201912403

vmwareesxiMatch6.5650-201912404

vmwareesxiMatch6.5650-202005001

vmwareesxiMatch6.7-

vmwareesxiMatch6.7670-201806001

vmwareesxiMatch6.7670-201807001

vmwareesxiMatch6.7670-201808001

vmwareesxiMatch6.7670-201810001

vmwareesxiMatch6.7670-201810101

vmwareesxiMatch6.7670-201810102

vmwareesxiMatch6.7670-201810103

vmwareesxiMatch6.7670-201810201

vmwareesxiMatch6.7670-201810202

vmwareesxiMatch6.7670-201810203

vmwareesxiMatch6.7670-201810204

vmwareesxiMatch6.7670-201810205

vmwareesxiMatch6.7670-201810206

vmwareesxiMatch6.7670-201810207

vmwareesxiMatch6.7670-201810208

vmwareesxiMatch6.7670-201810209

vmwareesxiMatch6.7670-201810210

vmwareesxiMatch6.7670-201810211

vmwareesxiMatch6.7670-201810212

vmwareesxiMatch6.7670-201810213

vmwareesxiMatch6.7670-201810214

vmwareesxiMatch6.7670-201810215

vmwareesxiMatch6.7670-201810216

vmwareesxiMatch6.7670-201810217

vmwareesxiMatch6.7670-201810218

vmwareesxiMatch6.7670-201810219

vmwareesxiMatch6.7670-201810220

vmwareesxiMatch6.7670-201810221

vmwareesxiMatch6.7670-201810222

vmwareesxiMatch6.7670-201810223

vmwareesxiMatch6.7670-201810224

vmwareesxiMatch6.7670-201810225

vmwareesxiMatch6.7670-201810226

vmwareesxiMatch6.7670-201810227

vmwareesxiMatch6.7670-201810228

vmwareesxiMatch6.7670-201810229

vmwareesxiMatch6.7670-201810230

vmwareesxiMatch6.7670-201810231

vmwareesxiMatch6.7670-201810232

vmwareesxiMatch6.7670-201810233

vmwareesxiMatch6.7670-201810234

vmwareesxiMatch6.7670-201811001

vmwareesxiMatch6.7670-201901001

vmwareesxiMatch6.7670-201901401

vmwareesxiMatch6.7670-201901402

vmwareesxiMatch6.7670-201901403

vmwareesxiMatch6.7670-201903001

vmwareesxiMatch6.7670-201904001

vmwareesxiMatch6.7670-201904201

vmwareesxiMatch6.7670-201904202

vmwareesxiMatch6.7670-201904203

vmwareesxiMatch6.7670-201904204

vmwareesxiMatch6.7670-201904205

vmwareesxiMatch6.7670-201904206

vmwareesxiMatch6.7670-201904207

vmwareesxiMatch6.7670-201904208

vmwareesxiMatch6.7670-201904209

vmwareesxiMatch6.7670-201904210

vmwareesxiMatch6.7670-201904211

vmwareesxiMatch6.7670-201904212

vmwareesxiMatch6.7670-201904213

vmwareesxiMatch6.7670-201904214

vmwareesxiMatch6.7670-201904215

vmwareesxiMatch6.7670-201904216

vmwareesxiMatch6.7670-201904217

vmwareesxiMatch6.7670-201904218

vmwareesxiMatch6.7670-201904219

vmwareesxiMatch6.7670-201904220

vmwareesxiMatch6.7670-201904221

vmwareesxiMatch6.7670-201904222

vmwareesxiMatch6.7670-201904223

vmwareesxiMatch6.7670-201904224

vmwareesxiMatch6.7670-201904225

vmwareesxiMatch6.7670-201904226

vmwareesxiMatch6.7670-201904227

vmwareesxiMatch6.7670-201904228

vmwareesxiMatch6.7670-201904229

vmwareesxiMatch6.7670-201905001

vmwareesxiMatch6.7670-201906002

vmwareesxiMatch6.7670-201908101

vmwareesxiMatch6.7670-201908102

vmwareesxiMatch6.7670-201908103

vmwareesxiMatch6.7670-201908104

vmwareesxiMatch6.7670-201908201

vmwareesxiMatch6.7670-201908202

vmwareesxiMatch6.7670-201908203

vmwareesxiMatch6.7670-201908204

vmwareesxiMatch6.7670-201908205

vmwareesxiMatch6.7670-201908206

vmwareesxiMatch6.7670-201908207

vmwareesxiMatch6.7670-201908208

vmwareesxiMatch6.7670-201908209

vmwareesxiMatch6.7670-201908210

vmwareesxiMatch6.7670-201908211

vmwareesxiMatch6.7670-201908212

vmwareesxiMatch6.7670-201908213

vmwareesxiMatch6.7670-201908214

vmwareesxiMatch6.7670-201908215

vmwareesxiMatch6.7670-201908216

vmwareesxiMatch6.7670-201908217

vmwareesxiMatch6.7670-201908218

vmwareesxiMatch6.7670-201908219

vmwareesxiMatch6.7670-201908220

vmwareesxiMatch6.7670-201908221

vmwareesxiMatch6.7670-201912001

vmwareesxiMatch6.7670-201912101

vmwareesxiMatch6.7670-201912102

vmwareesxiMatch6.7670-201912401

vmwareesxiMatch6.7670-201912402

vmwareesxiMatch6.7670-201912403

vmwareesxiMatch6.7670-201912404

vmwareesxiMatch6.7670-201912405

vmwareesxiMatch6.7670-202004001

vmwareesxiMatch6.7670-202004002

vmwareesxiMatch6.7670-202004301

vmwareesxiMatch6.7670-202004401

vmwareesxiMatch6.7670-202004402

vmwareesxiMatch6.7670-202004403

vmwareesxiMatch6.7670-202004404

vmwareesxiMatch6.7670-202004405

vmwareesxiMatch6.7670-202004406

vmwareesxiMatch6.7670-202004407

vmwareesxiMatch6.7670-202004408

VendorProductVersionCPE
vmwarefusion*cpe:2.3:a:vmware:fusion:*:*:*:*:*:*:*:*
vmwareworkstation*cpe:2.3:a:vmware:workstation:*:*:*:*:*:*:*:*
vmwareesxi6.5cpe:2.3:o:vmware:esxi:6.5:-:*:*:*:*:*:*
vmwareesxi6.5cpe:2.3:o:vmware:esxi:6.5:650-201701001:*:*:*:*:*:*
vmwareesxi6.5cpe:2.3:o:vmware:esxi:6.5:650-201703001:*:*:*:*:*:*
vmwareesxi6.5cpe:2.3:o:vmware:esxi:6.5:650-201703002:*:*:*:*:*:*
vmwareesxi6.5cpe:2.3:o:vmware:esxi:6.5:650-201704001:*:*:*:*:*:*
vmwareesxi6.5cpe:2.3:o:vmware:esxi:6.5:650-201707101:*:*:*:*:*:*
vmwareesxi6.5cpe:2.3:o:vmware:esxi:6.5:650-201707102:*:*:*:*:*:*
vmwareesxi6.5cpe:2.3:o:vmware:esxi:6.5:650-201707103:*:*:*:*:*:*

Vendor	Product	Version	CPE
vmware	fusion	*	cpe:2.3:a:vmware:fusion::::::::
vmware	workstation	*	cpe:2.3:a:vmware:workstation::::::::
vmware	esxi	6.5	cpe:2.3:o:vmware:esxi:6.5:-::::::
vmware	esxi	6.5	cpe:2.3:o:vmware:esxi:6.5:650-201701001::::::
vmware	esxi	6.5	cpe:2.3:o:vmware:esxi:6.5:650-201703001::::::
vmware	esxi	6.5	cpe:2.3:o:vmware:esxi:6.5:650-201703002::::::
vmware	esxi	6.5	cpe:2.3:o:vmware:esxi:6.5:650-201704001::::::
vmware	esxi	6.5	cpe:2.3:o:vmware:esxi:6.5:650-201707101::::::
vmware	esxi	6.5	cpe:2.3:o:vmware:esxi:6.5:650-201707102::::::
vmware	esxi	6.5	cpe:2.3:o:vmware:esxi:6.5:650-201707103::::::

Rows per page:

1-10 of 1861

References

www.talosintelligence.com/vulnerability_reports/TALOS-2019-0957

www.vmware.com/security/advisories/VMSA-2020-0011.html

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.5

Confidence

High

EPSS

Percentile

12.6%

JSON

Related for NVD:CVE-2020-3958

prion1 cvelist1 cve1 talos1 kaspersky1 nessus3 vmware2