CVE-2013-5972

CWE-2643 documents3 sources
Severity
7.2HIGH
EPSS
0.0%
top 85.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Vmware PlayerVmware Workstation
Timeline
PublishedNov 18
Latest updateMay 17

Description

VMware Workstation 9.x before 9.0.3 and VMware Player 5.x before 5.0.3 on Linux do not properly handle shared libraries, which allows host OS users to gain host OS privileges via unspecified vectors.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

NVDvmware/player5.0, 5.0.1, 5.0.2+2
NVDvmware/workstation9.0, 9.0.1, 9.0.2+2

Patches

Patch: www.vmware.comPatch: www.vmware.com

🔴Vulnerability Details

2
GHSA
GHSA-m5hv-qvxr-7rrh: VMware Workstation 92022-05-17
CVEList
CVE-2013-5972: VMware Workstation 92013-11-16
CVE-2013-5972 (HIGH CVSS 7.2) | VMware Workstation 9.x before 9.0.3 | cvebase.io