CVE-2012-5458

CWE-2643 documents3 sources
Severity
8.3HIGH
EPSS
0.1%
top 75.11%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Vmware PlayerVmware Workstation
Timeline
PublishedNov 14
Latest updateMay 17

Description

VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows use weak permissions for unspecified process threads, which allows host OS users to gain host OS privileges via a crafted application.

CVSS vector

AV:A/AC:L/C:C/I:C/A:CExploitability: 6.5 | Impact: 10.0

Affected Packages2 packages

NVDvmware/player6 versions+5
NVDvmware/workstation7 versions+6

🔴Vulnerability Details

2
GHSA
GHSA-f9mp-7f7v-39g9: VMware Workstation 82022-05-17
CVEList
CVE-2012-5458: VMware Workstation 82012-11-14