CVE-2016-7087

5.3 MEDIUM

Published: December 29, 2016 Modified: May 06, 2026

Description

Directory traversal vulnerability in the Connection Server in VMware Horizon View 5.x before 5.3.7, 6.x before 6.2.3, and 7.x before 7.0.1 allows remote attackers to obtain sensitive information via unspecified vectors.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://www.securityfocus.com/bid/93455

Source: cve@mitre.org

Third Party Advisory VDB Entry

http://www.securitytracker.com/id/1036972

Source: cve@mitre.org

http://www.vmware.com/security/advisories/VMSA-2016-0015.html

Source: cve@mitre.org

Patch Vendor Advisory

http://www.securityfocus.com/bid/93455

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory VDB Entry

http://www.securitytracker.com/id/1036972

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vmware.com/security/advisories/VMSA-2016-0015.html

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

6 reference(s) from NVD

Quick Stats

CVSS v3 Score

5.3 / 10.0

EPSS (Exploit Probability)

2.9%

87th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-22

Affected Vendors

vmware microsoft

Related CVEs