Vulnerability Details CVE-2018-6964
VMware Horizon Client for Linux (4.x before 4.8.0 and prior) contains a local privilege escalation vulnerability due to insecure usage of SUID binary. Successful exploitation of this issue may allow unprivileged users to escalate their privileges to root on a Linux machine where Horizon Client is installed.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.4%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 7.2
References
Products affected by CVE-2018-6964
-
cpe:2.3:a:vmware:horizon_client:4.0.0
-
cpe:2.3:a:vmware:horizon_client:4.0.1
-
cpe:2.3:a:vmware:horizon_client:4.1.0
-
cpe:2.3:a:vmware:horizon_client:4.2.0
-
cpe:2.3:a:vmware:horizon_client:4.3.0
-
cpe:2.3:a:vmware:horizon_client:4.4.0
-
cpe:2.3:a:vmware:horizon_client:4.5.0
-
cpe:2.3:a:vmware:horizon_client:4.6.0
-
cpe:2.3:a:vmware:horizon_client:4.6.1
-
cpe:2.3:a:vmware:horizon_client:4.7.0
-
cpe:2.3:o:linux:linux_kernel:-