CVE-2014-3793

4 documents4 sources
Severity
5.8MEDIUM
EPSS
0.2%
top 58.80%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Vmware EsxiVmware FusionVmware Player+1 more
Timeline
PublishedMay 31
Latest updateMay 14

Description

VMware Tools in VMware Workstation 10.x before 10.0.2, VMware Player 6.x before 6.0.2, VMware Fusion 6.x before 6.0.3, and VMware ESXi 5.0 through 5.5, when a Windows 8.1 guest OS is used, allows guest OS users to gain guest OS privileges or cause a denial of service (kernel NULL pointer dereference and guest OS crash) via unspecified vectors.

CVSS vector

AV:A/AC:L/C:P/I:P/A:PExploitability: 6.5 | Impact: 6.4

Affected Packages4 packages

NVDvmware/esxi5.0, 5.1, 5.5+2
NVDvmware/fusion6.0, 6.0.1, 6.0.2+2
NVDvmware/player6.0, 6.0.1+1
NVDvmware/workstation10.0, 10.0.1+1

🔴Vulnerability Details

2
GHSA
GHSA-75q2-28c3-jc72: VMware Tools in VMware Workstation 102022-05-14
CVEList
CVE-2014-3793: VMware Tools in VMware Workstation 102014-05-31

💥Exploits & PoCs

1
Nuclei
HTTP File Server <2.3c - Remote Command Execution
CVE-2014-3793 (MEDIUM CVSS 5.8) | VMware Tools in VMware Workstation | cvebase.io