CVE-2012-1518

high

VMware

CVSS v3 Base Score

8.3

AV:A/AC:L/Au:N/C:C/I:C/A:C

EPSS Score

0.9%

Exploitation probability in 30 days

Top 24% most likely to be exploited

Attack Characteristics

Attack Vector

Adjacent

Attack Complexity

Low

Confidentiality

Integrity

Availability

Published: April 17, 2012 (5140 days ago)

Last Modified: April 29, 2026

Vendor: VMware

Source: NVD

Description

VMware Workstation 8.x before 8.0.2, VMware Player 4.x before 4.0.2, VMware Fusion 4.x before 4.1.2, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 use an incorrect ACL for the VMware Tools folder, which allows guest OS users to gain guest OS privileges via unspecified vectors.

CWE

CWE-264

Affected Products

vmware workstationvmware playervmware fusionvmware esxivmware esx

References

🔗 osvdb.org 🔗 secunia.com 🔗 www.securityfocus.com 🔗 www.securitytracker.com 🔗 www.securitytracker.com

CVE-2012-1518

Vulnerability Report

Description

CWE

Affected Products

References