CVE-2016-2077

CWE-2643 documents3 sources
Severity
9.8CRITICAL
EPSS
0.6%
top 31.97%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Vmware PlayerVmware Workstation
Timeline
PublishedMay 18
Latest updateMay 17

Description

VMware Workstation 11.x before 11.1.3 and VMware Player 7.x before 7.1.3 on Windows incorrectly access an executable file, which allows host OS users to gain host OS privileges via unspecified vectors.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

NVDvmware/player4 versions+3
NVDvmware/workstation4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-9c56-6w4h-cgc4: VMware Workstation 112022-05-17
CVEList
CVE-2016-2077: VMware Workstation 112016-05-18
CVE-2016-2077 (CRITICAL CVSS 9.8) | VMware Workstation 11.x before 11.1 | cvebase.io