PT-2014-5505 · Vmware · Vmware Nsx+1

Published

2014-09-15

Updated

2017-08-29

CVE-2014-3796

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions VMware NSX versions 6.0 through 6.0.5 vCloud Networking and Security (vCNS) versions 5.1 through 5.1.4.1 vCloud Networking and Security (vCNS) versions 5.5 through 5.5.2

Description The issue is related to improper input validation, which allows attackers to obtain sensitive information.

Recommendations For VMware NSX versions 6.0 through 6.0.5, update to version 6.0.6 or later. For vCloud Networking and Security (vCNS) versions 5.1 through 5.1.4.1, update to version 5.1.4.2 or later. For vCloud Networking and Security (vCNS) versions 5.5 through 5.5.2, update to version 5.5.3 or later.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2014-3796

Affected Products

Vmware Nsx

Vcloud Networking/Security

PT-2014-5505 · Vmware · Vmware Nsx+1

CVE-2014-3796

Weakness Enumeration

Related Identifiers

Affected Products

References · 5