Vulnerability Details CVE-2014-3796
VMware NSX 6.0 before 6.0.6, and vCloud Networking and Security (vCNS) 5.1 before 5.1.4.2 and 5.5 before 5.5.3, does not properly validate input, which allows attackers to obtain sensitive information via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.7%
CVSS Severity
CVSS v2 Score 5.0
References
- http://secunia.com/advisories/59938
- http://www.securitytracker.com/id/1030835
- http://www.vmware.com/security/advisories/VMSA-2014-0009.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95926
- http://secunia.com/advisories/59938
- http://www.securitytracker.com/id/1030835
- http://www.vmware.com/security/advisories/VMSA-2014-0009.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95926
Products affected by CVE-2014-3796
-
cpe:2.3:a:vmware:nsx:6.0
-
cpe:2.3:a:vmware:nsx:6.0.1
-
cpe:2.3:a:vmware:nsx:6.0.2
-
cpe:2.3:a:vmware:nsx:6.0.3
-
cpe:2.3:a:vmware:nsx:6.0.4
-
cpe:2.3:a:vmware:nsx:6.0.5
-
cpe:2.3:a:vmware:vcloud_networking_and_security:5.1
-
cpe:2.3:a:vmware:vcloud_networking_and_security:5.1.1
-
cpe:2.3:a:vmware:vcloud_networking_and_security:5.1.2
-
cpe:2.3:a:vmware:vcloud_networking_and_security:5.1.3
-
cpe:2.3:a:vmware:vcloud_networking_and_security:5.1.4
-
cpe:2.3:a:vmware:vcloud_networking_and_security:5.1.4.1
-
cpe:2.3:a:vmware:vcloud_networking_and_security:5.5
-
cpe:2.3:a:vmware:vcloud_networking_and_security:5.5.0a
-
cpe:2.3:a:vmware:vcloud_networking_and_security:5.5.1
-
cpe:2.3:a:vmware:vcloud_networking_and_security:5.5.2
-
cpe:2.3:a:vmware:vcloud_networking_and_security:5.5.2.1