CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-3951

VMware Workstation (15.x before 15.5.2) and Horizon Client for Windows (5.x and prior before 5.4.0) contain a denial-of-service vulnerability due to a heap-overflow issue in Cortado Thinprint. Attackers with non-administrative access to a guest VM with virtual printing enabled may exploit this issue to create a denial-of-service condition of the Thinprint service running on the system where Workstation or Horizon Client is installed.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.2%

CVSS Severity

CVSS v3 Score 3.8

CVSS v2 Score 2.1

References

Products affected by CVE-2020-3951

Vmware » Horizon Client » Version: 5.0.0

cpe:2.3:a:vmware:horizon_client:5.0.0
Vmware » Horizon Client » Version: 5.1.0

cpe:2.3:a:vmware:horizon_client:5.1.0
Vmware » Horizon Client » Version: 5.2.0

cpe:2.3:a:vmware:horizon_client:5.2.0
Vmware » Horizon Client » Version: 5.3.0

cpe:2.3:a:vmware:horizon_client:5.3.0
Vmware » Workstation » Version: 15.0.0

cpe:2.3:a:vmware:workstation:15.0.0
Vmware » Workstation » Version: 15.0.1

cpe:2.3:a:vmware:workstation:15.0.1
Vmware » Workstation » Version: 15.0.2

cpe:2.3:a:vmware:workstation:15.0.2
Vmware » Workstation » Version: 15.0.3

cpe:2.3:a:vmware:workstation:15.0.3
Vmware » Workstation » Version: 15.0.4

cpe:2.3:a:vmware:workstation:15.0.4
Vmware » Workstation » Version: 15.1.0

cpe:2.3:a:vmware:workstation:15.1.0
Vmware » Workstation » Version: 15.5.0

cpe:2.3:a:vmware:workstation:15.5.0
Vmware » Workstation » Version: 15.5.1

cpe:2.3:a:vmware:workstation:15.5.1
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-3951

Products

Pricing

Contact Us