CVE-2020-3957
Published May 29, 2020
Last updated 3 years ago
Overview
- Description
- VMware Fusion (11.x before 11.5.5), VMware Remote Console for Mac (11.x and prior) and VMware Horizon Client for Mac (5.x and prior) contain a local privilege escalation vulnerability due to a Time-of-check Time-of-use (TOCTOU) issue in the service opener. Successful exploitation of this issue may allow attackers with normal user privileges to escalate their privileges to root on the system where Fusion, VMRC and Horizon Client are installed.
- Source
- security@vmware.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 7
- Impact score
- 5.9
- Exploitability score
- 1
- Vector string
- CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 6.9
- Impact score
- 10
- Exploitability score
- 3.4
- Vector string
- AV:L/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-367
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "387021A0-AF36-463C-A605-32EA7DAC172E"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:vmware:fusion:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8CD44672-26F4-4B0F-933E-C929B32E3C9E",
"versionEndExcluding": "11.5.5",
"versionStartIncluding": "11.0.0"
},
{
"criteria": "cpe:2.3:a:vmware:horizon_client:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EDE9D288-3370-41AB-BB69-B5A6A91FC582",
"versionEndIncluding": "5.4.0"
},
{
"criteria": "cpe:2.3:a:vmware:remote_console:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4385CDD4-5D94-4B3A-8D86-FCD568813509",
"versionEndIncluding": "11.0.1"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]