CVE-2008-4915

CWE-2643 documents3 sources
Severity
6.9MEDIUM
EPSS
0.1%
top 77.83%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Vmware ACEVmware ESXVmware Player+3 more
Timeline
PublishedNov 10
Latest updateMay 14

Description

The CPU hardware emulation in VMware Workstation 6.0.5 and earlier and 5.5.8 and earlier; Player 2.0.x through 2.0.5 and 1.0.x through 1.0.8; ACE 2.0.x through 2.0.5 and earlier, and 1.0.x through 1.0.7; Server 1.0.x through 1.0.7; ESX 2.5.4 through 3.5; and ESXi 3.5, when running 32-bit and 64-bit guest operating systems, does not properly handle the Trap flag, which allows authenticated guest OS users to gain privileges on the guest OS.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages6 packages

NVDvmware/player1.0.01.0.8+1
NVDvmware/server1.01.0.7
NVDvmware/workstation5.55.5.8+1
NVDvmware/esxi3.5
NVDvmware/ace1.01.0.7+1

🔴Vulnerability Details

2
GHSA
GHSA-pj5p-qr67-x54j: The CPU hardware emulation in VMware Workstation 62022-05-14
CVEList
CVE-2008-4915: The CPU hardware emulation in VMware Workstation 62008-11-10
CVE-2008-4915 (MEDIUM CVSS 6.9) | The CPU hardware emulation in VMwar | cvebase.io