CVE-2015-2339

medium

VMware

CVSS v3 Base Score

6.1

AV:A/AC:L/Au:N/C:N/I:N/A:C

EPSS Score

0.1%

Exploitation probability in 30 days

Top 67% most likely to be exploited

Attack Characteristics

Attack Vector

Adjacent

Attack Complexity

Low

Confidentiality

None

Integrity

None

Availability

Published: June 13, 2015 (3989 days ago)

Last Modified: May 6, 2026

Vendor: VMware

Source: NVD

Description

TPview.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode before 5.4.2 on Windows does not properly allocate memory, which allows guest OS users to cause a host OS denial of service via unspecified vectors, a different vulnerability than CVE-2015-2338.

CWE

CWE-399

Affected Products

vmware horizon clientvmware horizon view clientvmware fusionvmware playervmware workstation

References

🔗 www.securityfocus.com 🔗 www.securitytracker.com 🔗 www.securitytracker.com 🔗 www.vmware.com 🔗 www.securityfocus.com

CVE-2015-2339

Vulnerability Report

Description

CWE

Affected Products

References