CVE-2016-5329
MEDIUMVmware Fusion - Information Disclosure
Title source: ruleDescription
VMware Fusion 8.x before 8.5 on OS X, when System Integrity Protection (SIP) is enabled, allows local users to determine kernel memory addresses and bypass the kASLR protection mechanism via unspecified vectors.
Scores
CVSS v3
5.5
EPSS
0.0005
EPSS Percentile
14.3%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Classification
CWE
CWE-200
Status
published
Affected Products (6)
vmware/fusion
vmware/fusion
vmware/fusion
vmware/fusion
vmware/fusion
n/a/n/a
Timeline
Published
Dec 29, 2016
Tracked Since
Feb 18, 2026