Input Validation Vulnerabilities in VMware NSX and vCloud Networking Products
CVE-2014-3796

Currently unrated

Key Information:

Vendor: Vmware
Status: Vcloud Networking And Security; Nsx
Vendor: CVE Published:; 15 September 2014

What is CVE-2014-3796?

The vulnerability in VMware NSX versions earlier than 6.0.6, and vCloud Networking and Security versions prior to 5.1.4.2 and 5.5.3, arises from improper input validation mechanisms. Attackers may exploit this weakness to gain unauthorized access to sensitive information through unspecified vectors, thereby compromising the integrity and confidentiality of the system.

References

http://www.vmware.com/security/advisories/VMSA-2014-0009....

x_refsource_CONFIRM

http://www.securitytracker.com/id/1030835

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/59938

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 15, 2014
Vulnerability Reserved
May 20, 2014

JSON

Vmware

What is CVE-2014-3796?

References

Timeline