CVE-2011-2146

CWE-200 — Information Exposure5 documents5 sources

Severity

2.1LOW

EPSS

0.1%

top 75.57%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Vmware ESX Vmware Esxi Vmware Fusion +2 more

Timeline

PublishedJun 6

Latest updateMay 17

Description

mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x before 7.1.4, VMware Player 3.1.x before 3.1.4, VMware Fusion 3.1.x before 3.1.3, VMware ESXi 3.5 through 4.1, and VMware ESX 3.0.3 through 4.1 allows guest OS users to determine the existence of host OS files and directories via unspecified vectors.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages6 packages

▶NVDvmware/esxi3.5, 4.0, 4.1+2

▶NVDvmware/fusion3.1, 3.1.1, 3.1.2+2

▶NVDvmware/player4 versions+3

▶NVDvmware/workstation7.1.1, 7.1.2, 7.1.3+2

▶NVDvmware/esx4 versions+3

Patches

Patch: www.vmware.com ↗Patch: www.vmware.com ↗

🔴Vulnerability Details

GHSA

GHSA-522g-8fxg-x6c3: mount↗2022-05-17

▶

CVEList

CVE-2011-2146: mount↗2011-06-06

▶

OSV

CVE-2011-2146: mount↗2011-06-06

▶

📋Vendor Advisories

Debian

CVE-2011-2146: open-vm-tools - mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7...↗2011

▶