CVE-2014-8370

Published Jan 29, 2015

Last updated 7 years ago

CVSS info 6.4

Overview

Description: VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, VMware Fusion 6.x before 6.0.5, and VMware ESXi 5.0 through 5.5 allow host OS users to gain host OS privileges or cause a denial of service (arbitrary write to a file) by modifying a configuration file.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.4
Impact score: 4.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-264

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:vmware:player:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8BBDD49B-0083-4743-B4F8-6214FE8F4822"
          },
          {
            "criteria": "cpe:2.3:a:vmware:player:6.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BEBFD3AF-D8A3-4599-AF42-B47C0A62AA39"
          },
          {
            "criteria": "cpe:2.3:a:vmware:player:6.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "82AE914B-8688-4274-9D40-C3A166F112AE"
          },
          {
            "criteria": "cpe:2.3:a:vmware:player:6.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "043541FC-C4F9-4E71-8373-E9022DCC62DA"
          },
          {
            "criteria": "cpe:2.3:a:vmware:player:6.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "200179EA-B682-435D-948C-5B70B686D1AE"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:vmware:fusion:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4BF84FD-2666-48F4-AEA6-4F2B30AF95BF"
          },
          {
            "criteria": "cpe:2.3:a:vmware:fusion:6.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "184E7883-BBAD-4687-881A-69F0A5341ACA"
          },
          {
            "criteria": "cpe:2.3:a:vmware:fusion:6.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D2CFDBFB-3776-4615-AF3B-FCBD6840A95F"
          },
          {
            "criteria": "cpe:2.3:a:vmware:fusion:6.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DA730B34-3F72-451D-9960-DF44821A001C"
          },
          {
            "criteria": "cpe:2.3:a:vmware:fusion:6.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "67198AB1-95B1-4ECC-A4CE-E2EAE688E193"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:vmware:workstation:10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8D0119B9-916C-4A98-8542-10FFC4F71C80"
          },
          {
            "criteria": "cpe:2.3:a:vmware:workstation:10.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35CA413B-AB24-4884-A052-2A30A0CA4E7D"
          },
          {
            "criteria": "cpe:2.3:a:vmware:workstation:10.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4B2275C-913F-43D9-8146-0B0CD737E485"
          },
          {
            "criteria": "cpe:2.3:a:vmware:workstation:10.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "01512B1C-ABCF-4705-91E8-F51FE6397343"
          },
          {
            "criteria": "cpe:2.3:a:vmware:workstation:10.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A74B9F8A-E336-4421-ADA8-D2640DD7E67E"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:vmware:esxi:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E2331236-2E9B-4B52-81EE-B52DEB41ACE5"
          },
          {
            "criteria": "cpe:2.3:o:vmware:esxi:5.0:1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C5A1C2B-119E-49F3-B8E6-0610EE1C445C"
          },
          {
            "criteria": "cpe:2.3:o:vmware:esxi:5.0:2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF29B5A4-6E4C-4EAE-BC6A-0DD44262EE35"
          },
          {
            "criteria": "cpe:2.3:o:vmware:esxi:5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7217CBE1-3882-4045-A15C-EE7D4174CA00"
          },
          {
            "criteria": "cpe:2.3:o:vmware:esxi:5.1:1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A405802-D786-46F9-9E29-C727F9FD480A"
          },
          {
            "criteria": "cpe:2.3:o:vmware:esxi:5.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "469D98A5-7B8B-41BE-94C6-D6EF25388007"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References