CVE-2014-3796
VMware Security Advisory 2014-0009
Severity Score
7.5
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
VMware NSX 6.0 before 6.0.6, and vCloud Networking and Security (vCNS) 5.1 before 5.1.4.2 and 5.5 before 5.5.3, does not properly validate input, which allows attackers to obtain sensitive information via unspecified vectors.
VMware NSX 6.0 anterior a 6.0.6, y vCloud Networking and Security (vCNS) 5.1 anterior a 5.1.4.2 y 5.5 anterior a 5.5.3, no valida debidamente las entradas, lo que permite a atacantes obtener información sensible a través de vectores no especificados.
VMware NSX and vCloud Networking and Security (vCNS) product updates address a vulnerability that could lead to critical information disclosure.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2014-05-20 CVE Reserved
- 2014-09-12 CVE Published
- 2024-08-06 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (4)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/59938 | Third Party Advisory | |
| http://www.securitytracker.com/id/1030835 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/95926 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.vmware.com/security/advisories/VMSA-2014-0009.html | 2017-08-29 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Vmware Search vendor "Vmware" | Nsx Search vendor "Vmware" for product "Nsx" | 6.0 Search vendor "Vmware" for product "Nsx" and version "6.0" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Nsx Search vendor "Vmware" for product "Nsx" | 6.0.1 Search vendor "Vmware" for product "Nsx" and version "6.0.1" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Nsx Search vendor "Vmware" for product "Nsx" | 6.0.2 Search vendor "Vmware" for product "Nsx" and version "6.0.2" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Nsx Search vendor "Vmware" for product "Nsx" | 6.0.3 Search vendor "Vmware" for product "Nsx" and version "6.0.3" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Nsx Search vendor "Vmware" for product "Nsx" | 6.0.4 Search vendor "Vmware" for product "Nsx" and version "6.0.4" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Nsx Search vendor "Vmware" for product "Nsx" | 6.0.5 Search vendor "Vmware" for product "Nsx" and version "6.0.5" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Vcloud Networking And Security Search vendor "Vmware" for product "Vcloud Networking And Security" | 5.1 Search vendor "Vmware" for product "Vcloud Networking And Security" and version "5.1" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Vcloud Networking And Security Search vendor "Vmware" for product "Vcloud Networking And Security" | 5.1.1 Search vendor "Vmware" for product "Vcloud Networking And Security" and version "5.1.1" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Vcloud Networking And Security Search vendor "Vmware" for product "Vcloud Networking And Security" | 5.1.2 Search vendor "Vmware" for product "Vcloud Networking And Security" and version "5.1.2" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Vcloud Networking And Security Search vendor "Vmware" for product "Vcloud Networking And Security" | 5.1.3 Search vendor "Vmware" for product "Vcloud Networking And Security" and version "5.1.3" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Vcloud Networking And Security Search vendor "Vmware" for product "Vcloud Networking And Security" | 5.1.4 Search vendor "Vmware" for product "Vcloud Networking And Security" and version "5.1.4" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Vcloud Networking And Security Search vendor "Vmware" for product "Vcloud Networking And Security" | 5.1.4.1 Search vendor "Vmware" for product "Vcloud Networking And Security" and version "5.1.4.1" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Vcloud Networking And Security Search vendor "Vmware" for product "Vcloud Networking And Security" | 5.5 Search vendor "Vmware" for product "Vcloud Networking And Security" and version "5.5" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Vcloud Networking And Security Search vendor "Vmware" for product "Vcloud Networking And Security" | 5.5.0a Search vendor "Vmware" for product "Vcloud Networking And Security" and version "5.5.0a" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Vcloud Networking And Security Search vendor "Vmware" for product "Vcloud Networking And Security" | 5.5.1 Search vendor "Vmware" for product "Vcloud Networking And Security" and version "5.5.1" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Vcloud Networking And Security Search vendor "Vmware" for product "Vcloud Networking And Security" | 5.5.2 Search vendor "Vmware" for product "Vcloud Networking And Security" and version "5.5.2" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Vcloud Networking And Security Search vendor "Vmware" for product "Vcloud Networking And Security" | 5.5.2.1 Search vendor "Vmware" for product "Vcloud Networking And Security" and version "5.5.2.1" | - |
Affected
| ||||||