CVE-2012-5458

high VMware
CVSS v3 Base Score
8.3
AV:A/AC:L/Au:N/C:C/I:C/A:C
EPSS Score
0.1%
Exploitation probability in 30 days
Top 75% most likely to be exploited
Attack Characteristics
Attack Vector
Adjacent
Attack Complexity
Low
Confidentiality
C
Integrity
C
Availability
C
Published: November 14, 2012 (4929 days ago)
Last Modified: April 29, 2026
Vendor: VMware
Source: NVD

Description

VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows use weak permissions for unspecified process threads, which allows host OS users to gain host OS privileges via a crafted application.

CWE

CWE-264

Affected Products

vmware playervmware workstation

References

🔗 osvdb.org 🔗 www.securityfocus.com 🔗 www.vmware.com 🔗 exchange.xforce.ibmcloud.com 🔗 osvdb.org