CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-3947 – VMware Workstation vmnetdhcp Use-After-Free Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-3947
13 Mar 2020 — VMware Workstation (15.x before 15.5.2) and Fusion (11.x before 11.5.2) contain a use-after vulnerability in vmnetdhcp. Successful exploitation of this issue may lead to code execution on the host from the guest or may allow attackers to create a denial-of-service condition of the vmnetdhcp service running on the host machine. VMware Workstation (versiones 15.x anteriores a 15.5.2) y Fusion (versiones 11.x anteriores a 11.5.2), contienen una vulnerabilidad de uso previo en vmnetdhcp. Una explotación con éxi... • https://www.vmware.com/security/advisories/VMSA-2020-0004.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-3948 – VMware Workstation Virtual Printer External Control of File Name Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-3948
13 Mar 2020 — Linux Guest VMs running on VMware Workstation (15.x before 15.5.2) and Fusion (11.x before 11.5.2) contain a local privilege escalation vulnerability due to improper file permissions in Cortado Thinprint. Local attackers with non-administrative access to a Linux guest VM with virtual printing enabled may exploit this issue to elevate their privileges to root on the same guest VM. Linux Guest VMs ejecutado en VMware Workstation (versiones 15.x anteriores a 15.5.2) y Fusion (versiones 11.x anteriores a 11.5.2... • https://www.vmware.com/security/advisories/VMSA-2020-0004.html • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 9.0EPSS: 0%CPEs: 4EXPL: 0CVE-2019-5183
https://notcve.org/view.php?id=CVE-2019-5183
25 Jan 2020 — An exploitable type confusion vulnerability exists in AMD ATIDXX64.DLL driver, versions 26.20.13031.10003, 26.20.13031.15006 and 26.20.13031.18002. A specially crafted pixel shader can cause a type confusion issue, leading to potential code execution. An attacker can provide a specially crafted shader file to trigger this vulnerability. This vulnerability can be triggered from VMware guest, affecting VMware host. Se presenta una vulnerabilidad de confusión de tipos explotable en el controlador AMD ATIDXX64.... • https://talosintelligence.com/vulnerability_reports/TALOS-2019-0964 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 8.6EPSS: 0%CPEs: 2EXPL: 0CVE-2019-5146
https://notcve.org/view.php?id=CVE-2019-5146
25 Jan 2020 — An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver, version 26.20.13025.10004. A specially crafted pixel shader can cause a denial of service. An attacker can provide a specially crafted shader file to trigger this vulnerability. This vulnerability can be triggered from VMware guest, affecting VMware host. Se presenta una vulnerabilidad de lectura fuera de límites explotable en el controlador AMD ATIDXX64.DLL, versión 26.20.13025.10004. • https://talosintelligence.com/vulnerability_reports/TALOS-2019-0937 • CWE-125: Out-of-bounds Read •
CVSS: 8.6EPSS: 0%CPEs: 2EXPL: 0CVE-2019-5147
https://notcve.org/view.php?id=CVE-2019-5147
25 Jan 2020 — An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver, version 26.20.13003.1007. A specially crafted pixel shader can cause a denial of service. An attacker can provide a specially crafted shader file to trigger this vulnerability. This vulnerability can be triggered from VMware guest, affecting VMware host. Se presenta una vulnerabilidad de lectura fuera de límites explotable en el controlador AMD ATIDXX64.DLL, versión 26.20.13003.1007. • https://talosintelligence.com/vulnerability_reports/TALOS-2019-0936 • CWE-125: Out-of-bounds Read •
CVSS: 8.6EPSS: 0%CPEs: 2EXPL: 0CVE-2019-5124
https://notcve.org/view.php?id=CVE-2019-5124
25 Jan 2020 — An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver, version 26.20.13001.50005. A specially crafted pixel shader can cause a denial of service. An attacker can provide a specially crafted shader file to trigger this vulnerability. This vulnerability can be triggered from VMware guest, affecting VMware host. Se presenta una vulnerabilidad de lectura fuera de límites explotable en el controlador AMD ATIDXX64.DLL, versión 26.20.13001.50005. • https://talosintelligence.com/vulnerability_reports/TALOS-2019-0913 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2019-5539
https://notcve.org/view.php?id=CVE-2019-5539
23 Dec 2019 — VMware Workstation (15.x prior to 15.5.1) and Horizon View Agent (7.10.x prior to 7.10.1 and 7.5.x prior to 7.5.4) contain a DLL hijacking vulnerability due to insecure loading of a DLL by Cortado Thinprint. Successful exploitation of this issue may allow attackers with normal user privileges to escalate their privileges to administrator on a Windows machine where Workstation or View Agent is installed. VMware Workstation (versiones 15.x anteriores a 15.5.1) y Horizon View Agent (versiones 7.10.x anteriores... • https://www.vmware.com/security/advisories/VMSA-2019-0023.html • CWE-427: Uncontrolled Search Path Element •
CVSS: 8.6EPSS: 0%CPEs: 6EXPL: 1CVE-2019-5098
https://notcve.org/view.php?id=CVE-2019-5098
05 Dec 2019 — An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver, version 26.20.13001.29010. A specially crafted pixel shader can cause out-of-bounds memory read. An attacker can provide a specially crafted shader file to trigger this vulnerability. This vulnerability can be triggered from VMware guest, affecting VMware host. Se presenta una vulnerabilidad de lectura fuera de límites explotable en el controlador AMD ATIDXX64.DLL, versión 26.20.13001.29010. • https://talosintelligence.com/vulnerability_reports/TALOS-2019-0890 • CWE-125: Out-of-bounds Read •
CVSS: 7.7EPSS: 0%CPEs: 2EXPL: 0CVE-2019-5542
https://notcve.org/view.php?id=CVE-2019-5542
20 Nov 2019 — VMware Workstation (15.x before 15.5.1) and Fusion (11.x before 11.5.1) contain a denial-of-service vulnerability in the RPC handler. Successful exploitation of this issue may allow attackers with normal user privileges to create a denial-of-service condition on their own VM. VMware Workstation (versiones 15.x anteriores a 15.5.1) y Fusion (versiones 11.x anteriores a 11.5.1), contienen una vulnerabilidad de denegación de servicio en el controlador RPC. Una explotación con éxito de este problema puede permi... • https://www.vmware.com/security/advisories/VMSA-2019-0021.html •
CVSS: 7.7EPSS: 0%CPEs: 3EXPL: 0CVE-2019-5540
https://notcve.org/view.php?id=CVE-2019-5540
20 Nov 2019 — VMware Workstation (15.x before 15.5.1) and Fusion (11.x before 11.5.1) contain an information disclosure vulnerability in vmnetdhcp. Successful exploitation of this issue may allow an attacker on a guest VM to disclose sensitive information by leaking memory from the host process. VMware Workstation (versiones 15.x anteriores a 15.5.1) y Fusion (versiones 11.x anteriores a 11.5.1), contienen una vulnerabilidad de divulgación de información en vmnetdhcp. Una explotación con éxito de este problema puede perm... • https://www.vmware.com/security/advisories/VMSA-2019-0021.html • CWE-401: Missing Release of Memory after Effective Lifetime •