CVE-2016-5328

CWE-200Information ExposureCWE-2543 documents3 sources
Severity
5.5MEDIUM
EPSS
0.0%
top 85.46%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Vmware Tools
Timeline
PublishedDec 29
Latest updateMay 17

Description

VMware Tools 9.x and 10.x before 10.1.0 on OS X, when System Integrity Protection (SIP) is enabled, allows local users to determine kernel memory addresses and bypass the kASLR protection mechanism via unspecified vectors.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages1 packages

NVDvmware/tools10.0.8+22

🔴Vulnerability Details

2
GHSA
GHSA-4h47-vq45-ccw2: VMware Tools 92022-05-17
CVEList
CVE-2016-5328: VMware Tools 92016-12-29
CVE-2016-5328 (MEDIUM CVSS 5.5) | VMware Tools 9.x and 10.x before 10 | cvebase.io