CVE-2020-3941 Vulnerability Details

  /     /     /  

CVE-2020-3941 Metadata Quick Info

CVE Published: 15/01/2020 | CVE Updated: 04/08/2024 | CVE Year: 2020
Source: vmware | Vendor: VMware | Product: VMware Tools for Windows (VMware Tools)
Status : PUBLISHED

CVE-2020-3941 Description

The repair operation of VMware Tools for Windows 10.x.y has a race condition which may allow for privilege escalation in the Virtual Machine where Tools is installed. This vulnerability is not present in VMware Tools 11.x.y since the affected functionality is not present in VMware Tools 11.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name: VMware Tools privilege escalation vulnerability
Source: VMware

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description: