CVE-2020-4005

Published: Nov 20, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

VMware ESXi (7.0 before ESXi70U1b-17168206, 6.7 before ESXi670-202011101-SG, 6.5 before ESXi650-202011301-SG) contains a privilege-escalation vulnerability that exists in the way certain system calls are being managed. A malicious actor with privileges within the VMX process only, may escalate their privileges on the affected system. Successful exploitation of this issue is only possible when chained with another vulnerability (e.g. CVE-2020-4004)

Vendor	Product	Versions
n/a	VMware ESXi	affected `7.0 before ESXi70U1b-17168206` affected `6.7 before ESXi670-202011101-SG` affected `6.5 before ESXi650-202011301-SG`

References

https://www.vmware.com/security/advisories/VMSA-2020-0026.html

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-4005

Description

Affected Products

References