Lucene search
K
ZdiMost viewed

16763 matches found

Zero Day Initiative
Zero Day Initiative
•added 2010/11/10 12:0 a.m.•36 views

Apple Quicktime Sorenson Video Codec Decoding Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple's Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way...

10CVSS9.5AI score0.029EPSS
Exploits1References2
Zero Day Initiative
Zero Day Initiative
•added 2010/08/05 12:0 a.m.•36 views

Apple Webkit SVG First-Letter Style Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari's Webkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

10CVSS4.3AI score0.06084EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2010/05/11 12:0 a.m.•36 views

HP OpenView NNM getnnmdata.exe CGI Invalid ICount Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the getnnmdata.exe CGI. If this CGI is requested with an invalid iCount POST...

10CVSS4.8AI score0.67786EPSS
Exploits13References1
Zero Day Initiative
Zero Day Initiative
•added 2010/05/11 12:0 a.m.•36 views

HP OpenView NNM getnnmdata.exe CGI Invalid MaxAge Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the getnnmdata.exe CGI. If this CGI is requested with an invalid MaxAge...

10CVSS5.1AI score0.72168EPSS
Exploits14References1
Zero Day Initiative
Zero Day Initiative
•added 2010/04/21 12:0 a.m.•36 views

Adobe Download Manager Atlcom.get_atlcom ActiveX Control Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Adobe Download Manager. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within the gp.ocx ActiveX control. Th...

10CVSS5.6AI score0.08124EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2010/04/02 12:0 a.m.•36 views

Apple QuickTime FLI LinePacket Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

10CVSS5.8AI score0.18573EPSS
Exploits5References2
Zero Day Initiative
Zero Day Initiative
•added 2010/02/09 12:0 a.m.•36 views

Microsoft Office PowerPoint Viewer TextBytesAtom Record Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office PowerPoint Viewer. User interaction is required to exploit this vulnerability in that the target must open a malicious presentation. The specific flaw exists in the handling of...

10CVSS3AI score0.51073EPSS
Exploits8References1
Zero Day Initiative
Zero Day Initiative
•added 2009/12/09 12:0 a.m.•36 views

Adobe Flash Player JPEG Parsing Heap Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious web page or open a malicious SWF file. The specific flaw exists in the parsi...

9.3CVSS3.2AI score0.11556EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2009/11/04 12:0 a.m.•36 views

Sun Java HsbParser.getSoundBank Stack Buffer Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun Microsystems Java. User interaction is required in that a user must open a malicious file or visit a malicious web page. The specific flaw exists in the parsing of long file:// URL arguments to...

9.3CVSS5.3AI score0.73376EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2009/06/02 12:0 a.m.•36 views

Apple QuickTime Packed-bit Decoding Heap Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists when the application...

9.3CVSS4.6AI score0.04756EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2009/05/12 12:0 a.m.•36 views

Microsoft Office PowerPoint OutlineTextRefAtom Parsing Memory Corruption Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office PowerPoint. Exploitation requires that the attacker coerce the target into opening a malicious .PPT file. The specific flaw exists in the parsing of the OutlineTextRefAtom 3998. By...

9.3CVSS6.4AI score0.67539EPSS
Exploits5References1
Zero Day Initiative
Zero Day Initiative
•added 2009/02/10 12:0 a.m.•36 views

Microsoft Internet Explorer Malformed CSS Memory Corruption Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists when processing, in XHTML strict mod...

9.3CVSS2.7AI score0.33537EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2008/11/04 12:0 a.m.•36 views

Adobe Acrobat PDF Javascript getCosObj Memory Corruption Vulnerability

This vulnerability allows remote attackers to execute code on vulnerable installations of Adobe Acrobat. User interaction is required in that a user must visit a malicious web site. The specific flaw exists when processing malicious javascript contained in a PDF document. When creating a Collab...

9.3CVSS4.5AI score0.09497EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2008/09/09 12:0 a.m.•36 views

Microsoft Windows GDI+ BMP Parsing Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows XP, Server and Vista. User interaction is required in that a user must open a malicious image file. The specific flaws exist in the GDI+ subsystem when parsing maliciously crafted...

9.3CVSS5AI score0.39272EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2008/08/14 12:0 a.m.•36 views

Symantec Veritas Storage Foundation Scheduler Service NULL Session Authentication Bypass Vulnerability

This vulnerability allows an attacker to execute arbitrary code on vulnerable installations of Symantec Veritas Storage Foundation. User interaction is not required to exploit this vulnerability. Authentication is not required to exploit this vulnerability. The specific flaw exists in the...

10CVSS2.9AI score0.12246EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2008/04/03 12:0 a.m.•36 views

Apple QuickTime Kodak Encoding Heap Overflow Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Apple QuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the quicktime.qt...

6.8CVSS4.2AI score0.06947EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2008/03/26 12:0 a.m.•36 views

Novell eDirectory for Linux LDAP delRequest Stack Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell eDirectory for Linux. Authentication is not required to exploit this vulnerability. The specific flaw exists in the libnldap library. When a large LDAP delRequest message is sent, a stack...

6.8CVSS5.6AI score0.05003EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2007/12/11 12:0 a.m.•36 views

Microsoft Internet Explorer Element Tags Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the handling of document objects...

6.8CVSS2.1AI score0.27483EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2007/11/05 12:0 a.m.•36 views

Apple QuickTime Uncompressedfile Opcode Stack Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must open a malicious image file. The specific flaw exists in the parsing of the pict file format. If ...

7.6CVSS5.9AI score0.08053EPSS
Exploits4References1
Zero Day Initiative
Zero Day Initiative
•added 2007/10/31 12:0 a.m.•36 views

Hewlett-Packard OpenView Radia Integration Server File System Exposure Vulnerability

This vulnerability allows remote attackers to access arbitrary files on systems with vulnerable installations of Hewlett-Packard OpenView Radia Integration Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HTTP server bound by default to TCP...

7.8CVSS4.4AI score0.02772EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2007/08/06 12:0 a.m.•36 views

Novell Client NWSPOOL.DLL Stack Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of the Novell Netware Client. Authentication is not required to exploit this vulnerability. The specific flaw exists in nwspool.dll which is responsible for handling RPC requests through...

10CVSS3.4AI score0.23777EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2006/12/12 12:0 a.m.•36 views

Microsoft Visual Studio WmiScriptUtils.dll Cross-Zone Scripting Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. Successful exploitation requires that the target user browse to a malicious web page. The specific flaw exists in the Microsoft WMIScriptUtils.WMIObjectBroker2 ActiveX...

6.8CVSS3.5AI score0.42846EPSS
Exploits6References1
Zero Day Initiative
Zero Day Initiative
•added 2006/07/26 12:0 a.m.•36 views

Mozilla Firefox Javascript navigator Object Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of the Mozilla Firefox web browser. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The flaw exists when assigning specific values to the...

7.5CVSS2.3AI score0.78359EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2006/04/17 12:0 a.m.•36 views

Mozilla Firefox Tag Parsing Code Execution Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of the Mozilla/Firefox web browser and Thunderbird e-mail client. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious e-mail. The...

9.3CVSS4.8AI score0.10487EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/06/17 12:0 a.m.•35 views

Autodesk AutoCAD IGS File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of IG...

7.8CVSS7.8AI score0.00488EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/06/12 12:0 a.m.•35 views

(Pwn2Own) Microsoft Windows UnserializePropertySet Privilege Context Switching Error Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

8.8CVSS7.2AI score0.25222EPSS
Exploits7References1
Zero Day Initiative
Zero Day Initiative
•added 2024/04/29 12:0 a.m.•35 views

Centreon sysName Cross-Site Scripting Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Centreon. User interaction is required to exploit this vulnerability. The specific flaw exists within the processing of the sysName OID in SNMP. The issue results from the lack of proper validation o...

7.5CVSS7.8AI score0.0109EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/04/25 12:0 a.m.•35 views

Wazuh Analysis Engine Event Decoder Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Wazuh. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Analysis Engine service, which listens on TCP port 1514 by default. The issue results from the...

9.8CVSS7.5AI score0.01047EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/04/09 12:0 a.m.•35 views

Microsoft Windows Installer Service Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Windows...

7.8CVSS7.5AI score0.12258EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/04/01 12:0 a.m.•35 views

Flexera Software FlexNet Publisher Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Flexera Software FlexNet Publisher. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within t...

7.8CVSS7.5AI score0.00419EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/03/28 12:0 a.m.•35 views

Linux Kernel nft_exthdr_sctp_eval Stack-based Buffer Overflow Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of the Linux Kernel. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

7.3CVSS6.5AI score0.00675EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/02/23 12:0 a.m.•35 views

Linux Kernel ksmbd Mech Token Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Linux Kernel. Authentication is not required to exploit this vulnerability. However, only systems with ksmbd enabled are vulnerable. The specific flaw exists within the handling of SMB2 Mech...

9.3CVSS6.5AI score0.78388EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/02/09 12:0 a.m.•35 views

Allegra uploadSimpleFile Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the uploadSimpleFile method. The iss...

7.2CVSS7.8AI score0.0179EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/01/04 12:0 a.m.•35 views

X.Org Server RecalculateMasterButtons Out-Of-Bounds Access Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of Button...

7.8CVSS7.7AI score0.01587EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/11/15 12:0 a.m.•35 views

Microsoft Exchange TransportConfigContainer Deserialization of Untrusted Data Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information or relay NTLM credentials on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the SerializationTypeConverter class. The issue results...

8.8CVSS6.7AI score0.392EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/11/15 12:0 a.m.•35 views

GStreamer AV1 Codec Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the parsing of AV1...

8.8CVSS7.5AI score0.02189EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/11/06 12:0 a.m.•35 views

SolarWinds Network Configuration Manager ExportConfigs Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Network Configuration Manager. Authentication is required to exploit this vulnerability. The specific flaw exists within the ExportConfigs method. The issue results from the lack of proper...

8.8CVSS7.7AI score0.0184EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/10/19 12:0 a.m.•35 views

Siemens Tecnomatix Plant Simulation IGS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00222EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/10/19 12:0 a.m.•35 views

Siemens Tecnomatix Plant Simulation SPP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00222EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/09/27 12:0 a.m.•35 views

Microsoft Visual Studio FBX File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Visual Studio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS6.7AI score0.01779EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/09/12 12:0 a.m.•35 views

Microsoft Azure DevOps Server MachinePropertyBag Deserialization of Untrusted Data Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Azure DevOps Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

7CVSS7.1AI score0.01289EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/14 12:0 a.m.•35 views

Adobe Acrobat Reader DC Font Parsing Uninitialized Variable Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS6.8AI score0.02036EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/07/06 12:0 a.m.•35 views

GStreamer PGS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the parsing of PGS...

8.8CVSS7.1AI score0.02052EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/05/17 12:0 a.m.•35 views

Linux Kernel ksmbd Session Race Condition Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Linux Kernel. Authentication is not required to exploit this vulnerability, but only systems with ksmbd enabled are vulnerable. The specific flaw exists within the processing of SMB2LOGOFF and...

8.1CVSS7.4AI score0.02515EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/05/17 12:0 a.m.•35 views

Apple macOS KTX Image Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the ImageIO framework is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the...

3.3CVSS6.2AI score0.00939EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/05/04 12:0 a.m.•35 views

D-Link DAP-1360 Multiple Parameters Stack-Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the /cgi-bin/webproc endpoint. When parsing the errorpage and nextpage...

8.8CVSS7.4AI score0.01101EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/05/04 12:0 a.m.•35 views

D-Link DIR-2640 DestNetwork Command Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handli...

6.8CVSS7.5AI score0.01796EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/05/04 12:0 a.m.•35 views

D-Link DAP-1360 webproc var:sys_Token Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling requests to the /cgi-bin/webproc endpoint. When parsing t...

7.5CVSS7.4AI score0.00913EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/05/01 12:0 a.m.•35 views

Foxit PDF Editor XLS File Parsing Exposed Dangerous Method Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XL...

7.8CVSS6.9AI score0.00538EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/05/01 12:0 a.m.•35 views

(Pwn2Own) VMware Workstation UHCI Component Uninitialized Variable Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of VMware Workstation. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...

6CVSS6.9AI score0.00375EPSS
Exploits0References1
Total number of security vulnerabilities5000