CVE-2015-2337

medium VMware
CVSS v3 Base Score
5.8
AV:A/AC:L/Au:N/C:P/I:P/A:P
EPSS Score
0.1%
Exploitation probability in 30 days
Top 75% most likely to be exploited
Attack Characteristics
Attack Vector
Adjacent
Attack Complexity
Low
Confidentiality
P
Integrity
P
Availability
P
Published: June 13, 2015 (3989 days ago)
Last Modified: May 6, 2026
Vendor: VMware
Source: NVD

Description

TPInt.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode before 5.4.2 on Windows does not properly allocate memory, which allows guest OS users to execute arbitrary code on the host OS via unspecified vectors.

CWE

CWE-399

Affected Products

vmware fusionvmware playervmware workstationvmware horizon clientvmware horizon view client

References

🔗 www.securityfocus.com 🔗 www.securitytracker.com 🔗 www.securitytracker.com 🔗 www.vmware.com 🔗 www.securityfocus.com