8.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:P/I:N/A:C
0.904 High
EPSS
Percentile
98.8%
a. VMware vSphere API denial of service vulnerabilityThe VMware vSphere API contains a denial of service vulnerability. This issue allows an unauthenticated user to send a maliciously crafted API request and disable the host daemon. Exploitation of the issue would prevent management activities on the host but any virtual machines running on the host would be unaffected.VMware would like to thank Sebastián Tello of Core Security Technologies for reporting this issue to us.The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2012-5703 to this issue.Column 4 of the following table lists the action required to remediate the vulnerability in each release, if a solution is available.
CPE | Name | Operator | Version |
---|---|---|---|
esxi | lt | ESXi410-201211401-SG | |
esx | lt | ESX410-201211401-SG | |
esx | lt | ESX410-201211402-SG | |
esx | eq | 4.0 | |
esx | lt | ESX410-201211407-SG | |
esx | lt | ESX410-201211405-SG |
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4940
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4944
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0441
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0876
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1033
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1148
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1150
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1667
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3817
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5703