CVE-2011-1126

CWE-2643 documents3 sources

Severity

6.9MEDIUM

EPSS

0.1%

top 78.74%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Vmware VIX API Vmware Workstation

Timeline

PublishedApr 4

Latest updateMay 14

Description

VMware vmrun, as used in VIX API 1.x before 1.10.3 and VMware Workstation 6.5.x and 7.x before 7.1.4 build 385536 on Linux, might allow local users to gain privileges via a Trojan horse shared library in an unspecified directory.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages2 packages

▶NVDvmware/workstation12 versions+11

▶NVDvmware/vix_api13 versions+12

🔴Vulnerability Details

GHSA

GHSA-j2qw-vv3p-xrvq: VMware vmrun, as used in VIX API 1↗2022-05-14

▶

CVEList

CVE-2011-1126: VMware vmrun, as used in VIX API 1↗2011-04-01

▶