Vulnerability CVE-2014-3796


Published: 2014-09-15

Description:
VMware NSX 6.0 before 6.0.6, and vCloud Networking and Security (vCNS) 5.1 before 5.1.4.2 and 5.5 before 5.5.3, does not properly validate input, which allows attackers to obtain sensitive information via unspecified vectors.

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:N/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5/10
2.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
None
None
Affected software
Vmware -> NSX 
Vmware -> Vcloud networking and security 

 References:
http://secunia.com/advisories/59938
http://www.securitytracker.com/id/1030835
http://www.vmware.com/security/advisories/VMSA-2014-0009.html
http://xforce.iss.net/xforce/xfdb/95926

Copyright 2024, cxsecurity.com

 

Back to Top