CVE-2011-0355

high

VMware

CVSS v3 Base Score

7.8

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS Score

1.8%

Exploitation probability in 30 days

Top 17% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Confidentiality

None

Integrity

None

Availability

Published: February 17, 2011 (5565 days ago)

Last Modified: April 29, 2026

Vendor: VMware

Source: NVD

Description

Cisco Nexus 1000V Virtual Ethernet Module (VEM) 4.0(4) SV1(1) through SV1(3b), as used in VMware ESX 4.0 and 4.1 and ESXi 4.0 and 4.1, does not properly handle dropped packets, which allows guest OS users to cause a denial of service (ESX or ESXi host OS crash) by sending an 802.1Q tagged packet over an access vEthernet port, aka Cisco Bug ID CSCtj17451.

CWE

CWE-399

Affected Products

cisco 1000v virtual ethernet module \(vem\)vmware esxvmware esxi

References

🔗 lists.vmware.com 🔗 secunia.com 🔗 securityreason.com 🔗 securitytracker.com 🔗 www.cisco.com

CVE-2011-0355

Vulnerability Report

Description

CWE

Affected Products

References