CVE-2014-8370

{"id": "CVE-2014-8370", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.4, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-01-29T18:59:00.047", "references": [{"url": "http://jvn.jp/en/jp/JVN88252465/index.html", "tags": ["Third Party Advisory", "VDB Entry"], "source": "cve@mitre.org"}, {"url": "http://jvndb.jvn.jp/jvndb/JVNDB-2015-000007", "tags": ["Third Party Advisory", "VDB Entry"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/62551", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/62605", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/62669", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/72338", "tags": ["Third Party Advisory", "VDB Entry"], "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id/1031642", "tags": ["Third Party Advisory", "VDB Entry"], "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id/1031643", "tags": ["Third Party Advisory", "VDB Entry"], "source": "cve@mitre.org"}, {"url": "http://www.vmware.com/security/advisories/VMSA-2015-0001.html", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100933", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, VMware Fusion 6.x before 6.0.5, and VMware ESXi 5.0 through 5.5 allow host OS users to gain host OS privileges or cause a denial of service (arbitrary write to a file) by modifying a configuration file."}, {"lang": "es", "value": "VMware Workstation 10.x anterior a 10.0.5, VMware Player 6.x anterior a 6.0.5, VMware Fusion 6.x anterior a 6.0.5, y VMware ESXi 5.0 hasta 5.5 permiten a usuarios del sistema operativo anfitri\u00f3n ganar privilegios del sistema operativo anfitri\u00f3n o causar una denegaci\u00f3n de servicio (escritura arbitraria a un fichero) mediante la modificaci\u00f3n de un fichero de configuraci\u00f3n."}], "lastModified": "2017-09-08T01:29:23.120", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:vmware:player:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8BBDD49B-0083-4743-B4F8-6214FE8F4822"}, {"criteria": "cpe:2.3:a:vmware:player:6.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BEBFD3AF-D8A3-4599-AF42-B47C0A62AA39"}, {"criteria": "cpe:2.3:a:vmware:player:6.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "82AE914B-8688-4274-9D40-C3A166F112AE"}, {"criteria": "cpe:2.3:a:vmware:player:6.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "043541FC-C4F9-4E71-8373-E9022DCC62DA"}, {"criteria": "cpe:2.3:a:vmware:player:6.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "200179EA-B682-435D-948C-5B70B686D1AE"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:vmware:fusion:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A4BF84FD-2666-48F4-AEA6-4F2B30AF95BF"}, {"criteria": "cpe:2.3:a:vmware:fusion:6.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "184E7883-BBAD-4687-881A-69F0A5341ACA"}, {"criteria": "cpe:2.3:a:vmware:fusion:6.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D2CFDBFB-3776-4615-AF3B-FCBD6840A95F"}, {"criteria": "cpe:2.3:a:vmware:fusion:6.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DA730B34-3F72-451D-9960-DF44821A001C"}, {"criteria": "cpe:2.3:a:vmware:fusion:6.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "67198AB1-95B1-4ECC-A4CE-E2EAE688E193"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:vmware:workstation:10.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8D0119B9-916C-4A98-8542-10FFC4F71C80"}, {"criteria": "cpe:2.3:a:vmware:workstation:10.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "35CA413B-AB24-4884-A052-2A30A0CA4E7D"}, {"criteria": "cpe:2.3:a:vmware:workstation:10.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D4B2275C-913F-43D9-8146-0B0CD737E485"}, {"criteria": "cpe:2.3:a:vmware:workstation:10.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "01512B1C-ABCF-4705-91E8-F51FE6397343"}, {"criteria": "cpe:2.3:a:vmware:workstation:10.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A74B9F8A-E336-4421-ADA8-D2640DD7E67E"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:vmware:esxi:5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E2331236-2E9B-4B52-81EE-B52DEB41ACE5"}, {"criteria": "cpe:2.3:o:vmware:esxi:5.0:1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7C5A1C2B-119E-49F3-B8E6-0610EE1C445C"}, {"criteria": "cpe:2.3:o:vmware:esxi:5.0:2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF29B5A4-6E4C-4EAE-BC6A-0DD44262EE35"}, {"criteria": "cpe:2.3:o:vmware:esxi:5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7217CBE1-3882-4045-A15C-EE7D4174CA00"}, {"criteria": "cpe:2.3:o:vmware:esxi:5.1:1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A405802-D786-46F9-9E29-C727F9FD480A"}, {"criteria": "cpe:2.3:o:vmware:esxi:5.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "469D98A5-7B8B-41BE-94C6-D6EF25388007"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}