CyberSec.Space Logo
返回 CVE 浏览器

CVE-2016-3643

Known Exploited (CISA KEV)HIGH
7.8
CVSS Severity Score
EPSS Score29.4840%
EPSS Percentile86.34th
Published2016年6月17日
Last Modified2026年4月21日

Vulnerability Description

SolarWinds Virtualization Manager 6.3.1 and earlier allow local users to gain privileges by leveraging a misconfiguration of sudo, as demonstrated by "sudo cat /etc/passwd."

Affected Platforms (CPE)

📦
Solarwinds

Virtualization Manager

<= 6.3.1

References & Advisories

🔗 http://packetstormsecurity.com/files/137487/Solarwinds-Virtualization-Manager-6.3.1-Privilege-Escalation.html
🔗 http://seclists.org/fulldisclosure/2016/Jun/26
🔗 https://www.exploit-db.com/exploits/39967/
🔗 http://packetstormsecurity.com/files/137487/Solarwinds-Virtualization-Manager-6.3.1-Privilege-Escalation.html
🔗 http://seclists.org/fulldisclosure/2016/Jun/26
🔗 https://www.exploit-db.com/exploits/39967/
🔗 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-3643

相关漏洞威胁

CVE-2019-1664910.0

On Supermicro H11, H12, M11, X9, X10, and X11 products, a combination of encryption and authentication problems in the virtual med...

CVE-2019-1665010.0

On Supermicro X10 and X11 products, a client's access privileges may be transferred to a different client that later has the same ...

CVE-2019-1264310.0

A vulnerability in the Cisco REST API virtual service container for Cisco IOS XE Software could allow an unauthenticated, remote a...

CVE-2007-541910.0

The 3Com 3CRWER100-75 router with 1.2.10ww software, when enabling an optional virtual server, configures this server to accept al...