CVE-2016-5328
Description
VMware Tools 9.x and 10.x before 10.1.0 on OS X, when System Integrity Protection (SIP) is enabled, allows local users to determine kernel memory addresses and bypass the kASLR protection mechanism via unspecified vectors.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.047
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2016-5328,CVE-2016-7079,CVE-2016-7080 are affected in vmware tools (x64) 10.0.0 | Windows |
| Vulnerabilities CVE-2016-5328,CVE-2016-7079,CVE-2016-7080,CVE-2022-31676 are affected in vmware tools (x64) 10.0.5 | Windows |
| Vulnerabilities CVE-2015-5191,CVE-2016-5328,CVE-2016-7079,CVE-2016-7080 are affected in vmware tools (x64) 10.0.8 | Windows |
| Vulnerabilities CVE-2016-5328,CVE-2016-7079,CVE-2016-7080 are affected in VMware Tools 10.0.0 | Windows |
| Vulnerabilities CVE-2016-5328,CVE-2016-7079,CVE-2016-7080,CVE-2022-31676 are affected in VMware Tools 10.0.5 | Windows |
| Vulnerabilities CVE-2016-5328,CVE-2016-7079,CVE-2016-7080 are affected in VMware Tools 10.0.6 | Windows |
| Vulnerabilities CVE-2015-5191,CVE-2016-5328,CVE-2016-7079,CVE-2016-7080 are affected in VMware Tools 10.0.8 | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-333962 | VMware Tools (x64) (12.3.5) |
| PATCH-333962 | VMware Tools (x64) (12.3.5) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234