CVE-2014-3790

Currently unrated

Key Information:

Vendor: Vmware
Status: Vcenter Server Appliance
Vendor: CVE Published:; 1 June 2014

Summary

Ruby vSphere Console (RVC) in VMware vCenter Server Appliance allows remote authenticated users to execute arbitrary commands as root by escaping from a chroot jail.

References

http://www.securitytracker.com/id/1030436

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/58823

third-party-advisoryx_refsource_SECUNIA

http://zerodayinitiative.com/advisories/ZDI-14-159/

x_refsource_MISC

EPSS Score

2% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 1, 2014
Vulnerability Reserved
May 19, 2014