cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2017-16839,https://securityvulnerability.io/vulnerability/CVE-2017-16839,,Hashicorp vagrant-vmware-fusion 5.0.4 allows local users to steal root privileges if VMware Fusion is not installed.,Hashicorp,Vagrant Vmware Fusion,7,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2018-03-29T22:00:00.000Z,0
CVE-2017-16512,https://securityvulnerability.io/vulnerability/CVE-2017-16512,,The vagrant update process in Hashicorp vagrant-vmware-fusion 5.0.2 through 5.0.4 allows local users to steal root privileges via a crafted update request when no updates are available.,Hashicorp,Vagrant Vmware Fusion,7.8,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2018-03-29T22:00:00.000Z,0
CVE-2017-16873,https://securityvulnerability.io/vulnerability/CVE-2017-16873,,It is possible to exploit an unsanitized PATH in the suid binary that ships with vagrant-vmware-fusion 4.0.25 through 5.0.4 in order to escalate to root privileges.,Hashicorp,Vagrant Vmware Fusion,7.8,HIGH,0.0004799999878741801,false,,false,false,false,,,false,false,,2018-03-29T22:00:00.000Z,0
CVE-2017-15884,https://securityvulnerability.io/vulnerability/CVE-2017-15884,,"In HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.0, a local attacker or malware can silently subvert the plugin update process in order to escalate to root privileges.",Hashicorp,Vagrant Vmware Fusion,7,HIGH,0.0006200000061653554,false,,false,false,false,,,false,false,,2017-10-31T18:00:00.000Z,0
CVE-2017-12579,https://securityvulnerability.io/vulnerability/CVE-2017-12579,,An insecure suid wrapper binary in the HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 4.0.24 and earlier allows a non-root user to obtain a root shell.,Hashicorp,Vagrant Vmware Fusion,7.8,HIGH,0.0008399999933317304,false,,false,false,false,,,false,false,,2017-10-19T13:00:00.000Z,0
CVE-2017-11741,https://securityvulnerability.io/vulnerability/CVE-2017-11741,,"HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) before 4.0.24 uses weak permissions for the sudo helper scripts, allows local users to execute arbitrary code with root privileges by overwriting one of the scripts.",Hashicorp,Vagrant Vmware Fusion,8.8,HIGH,0.0006600000197067857,false,,false,false,false,,,false,false,,2017-08-08T19:00:00.000Z,0
CVE-2017-7642,https://securityvulnerability.io/vulnerability/CVE-2017-7642,,The sudo helper in the HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) before 4.0.21 allows local users to gain root privileges by leveraging failure to verify the path to the encoded ruby script or scrub the PATH variable.,Hashicorp,Vagrant Vmware Fusion,7.8,HIGH,0.0006200000061653554,false,,false,false,false,,,false,false,,2017-08-02T19:00:00.000Z,0