Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2015-0012

Microsoft System Center Virtual Machine Manager (VMM) 2012 R2 Update Rollup 4 does not properly validate the roles of users, which allows local users to obtain server and virtual-machine administrative privileges by establishing a server session with Active Directory credentials, aka "Virtual Machine Manager Elevation of Privilege Vulnerability."

  • Published: Feb 11, 2015
  • Updated: Apr 13, 2023
  • CVE: CVE-2015-0012
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6.9
  • AV:L/AC:M/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
microsoft / virtual_machine_manager 2012-r2_rollup4 2012-r2_rollup4.x