The boot implementation on Cisco ASR 5000 and 5500 devices with software 14.0 allows local users to execute arbitrary Linux commands by leveraging administrative privileges for storage of these. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.
vmware-vmx.exe in VMware Workstation 7.x through 10.x before 10.0.7 and 11.x before 11.1.1, VMware Player 5.x and 6.x before 6.0.7 and 7.x before 7.1.1, and VMware Horizon Client 5.x local-mode. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.
EMC RecoverPoint for Virtual Machines (VMs) 4.2 allows local users to obtain root-shell access by bypassing the Installation Manager Boxmgmt CLI interface. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.