CVE-2018-6969

HIGH Year: 2018
CVSS v3 Score
7.0
High
CVSS v2 Score
4.4
Medium
Weakness Type
CWE-125
View all →

Vulnerability Description

VMware Tools (10.x and prior before 10.3.0) contains an out-of-bounds read vulnerability in HGFS. Successful exploitation of this issue may lead to information disclosure or may allow attackers to escalate their privileges on the guest VMs. In order to be able to exploit this issue, file sharing must be enabled.

Related Vulnerabilities

CVE-2017-11600

HIGH
CVSS:7.0(High)

net/xfrm/xfrm_policy.c in the Linux kernel through 4.12.3, when CONFIG_XFRM_MIGRATE is enabled, does not ensure that the dir value of xfrm_userpolicy_id is XFRM_POLICY_MAX or less, which allows local ...

CWE-1252017

CVE-2018-16667

HIGH
CVSS:7.0(High)

An issue was discovered in Contiki-NG through 4.1. There is a buffer over-read in lookup in os/storage/antelope/lvm.c while parsing AQL (lvm_register_variable, lvm_set_variable_value, create_intersect...

CWE-1252018

CVE-2020-11179

HIGH
CVSS:7.0(High)

Arbitrary read and write to kernel addresses by temporarily overwriting ring buffer pointer and creating a race condition. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon C...

CWE-1252020

CVE-2020-6061

HIGH
CVSS:7.0(High)

An exploitable heap out-of-bounds read vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to information leaks and other mis...

CWE-1252020

CVE-2022-40636

HIGH
CVSS:7.0(High)

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim 2022 R1. User interaction is required to exploit this vulnerability in that the targe...

CWE-1252022

CVE-2022-41745

HIGH
CVSS:7.0(High)

An Out-of-Bounds access vulnerability in Trend Micro Apex One could allow a local attacker to create a specially crafted message to cause memory corruption on a certain service process which could lea...

CWE-1252022