exploitDog

GHSA-r9pp-872q-3pg2

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Microsoft System Center Virtual Machine Manager (VMM) 2012 R2 Update Rollup 4 does not properly validate the roles of users, which allows local users to obtain server and virtual-machine administrative privileges by establishing a server session with Active Directory credentials, aka "Virtual Machine Manager Elevation of Privilege Vulnerability."

Microsoft System Center Virtual Machine Manager (VMM) 2012 R2 Update Rollup 4 does not properly validate the roles of users, which allows local users to obtain server and virtual-machine administrative privileges by establishing a server session with Active Directory credentials, aka "Virtual Machine Manager Elevation of Privilege Vulnerability."

Ссылки

EPSS

Процентиль: 88%

0.03941

Низкий

CVE ID

Связанные уязвимости

CVE-2015-0012

nvd

почти 11 лет назад

Microsoft System Center Virtual Machine Manager (VMM) 2012 R2 Update Rollup 4 does not properly validate the roles of users, which allows local users to obtain server and virtual-machine administrative privileges by establishing a server session with Active Directory credentials, aka "Virtual Machine Manager Elevation of Privilege Vulnerability."

EPSS

Процентиль: 88%

0.03941

Низкий

CVE ID