CVE-2014-3790
VMware vCenter Server Appliance - Authenticated Remote Code Execution via Ruby vSphere Console Chroot Escape
Title source: llmDescription
Ruby vSphere Console (RVC) in VMware vCenter Server Appliance allows remote authenticated users to execute arbitrary commands as root by escaping from a chroot jail.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1030436
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58823
Third Party Advisory x_refsource_misc
http://zerodayinitiative.com/advisories/ZDI-14-159/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/67756
Scores
EPSS
0.0050
EPSS Percentile
66.3%
Details
CWE
CWE-264
Status
published
Products (2)
vmware/vcenter_server_appliance
5.1
vmware/vcenter_server_appliance
5.5
Published
Jun 01, 2014
Tracked Since
Feb 18, 2026