Vulnerability Details CVE-2020-3941
The repair operation of VMware Tools for Windows 10.x.y has a race condition which may allow for privilege escalation in the Virtual Machine where Tools is installed. This vulnerability is not present in VMware Tools 11.x.y since the affected functionality is not present in VMware Tools 11.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 7.0%
CVSS Severity
CVSS v3 Score 7.0
CVSS v2 Score 4.4
References
Products affected by CVE-2020-3941
-
cpe:2.3:a:vmware:tools:10.0.0
-
cpe:2.3:a:vmware:tools:10.0.12
-
cpe:2.3:a:vmware:tools:10.0.5
-
cpe:2.3:a:vmware:tools:10.0.6
-
cpe:2.3:a:vmware:tools:10.0.8
-
cpe:2.3:a:vmware:tools:10.0.9
-
cpe:2.3:a:vmware:tools:10.1
-
cpe:2.3:a:vmware:tools:10.1.0
-
cpe:2.3:a:vmware:tools:10.1.10
-
cpe:2.3:a:vmware:tools:10.1.15
-
cpe:2.3:a:vmware:tools:10.1.5
-
cpe:2.3:a:vmware:tools:10.1.7
-
cpe:2.3:a:vmware:tools:10.2
-
cpe:2.3:a:vmware:tools:10.2.1
-
cpe:2.3:a:vmware:tools:10.2.5
-
cpe:2.3:a:vmware:tools:10.3.0
-
cpe:2.3:a:vmware:tools:10.3.10
-
cpe:2.3:a:vmware:tools:10.3.2
-
cpe:2.3:a:vmware:tools:10.3.20
-
cpe:2.3:a:vmware:tools:10.3.21
-
cpe:2.3:a:vmware:tools:10.3.22
-
cpe:2.3:a:vmware:tools:10.3.25
-
cpe:2.3:a:vmware:tools:10.3.26
-
cpe:2.3:a:vmware:tools:10.3.5
-
cpe:2.3:o:microsoft:windows:-