Virtual Machine Manager Elevation of Privilege Vulnerability

Virtual Machine Manager Elevation of Privilege Vulnerability

CVE-2015-0012 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

Microsoft System Center Virtual Machine Manager (VMM) 2012 R2 Update Rollup 4 does not properly validate the roles of users, which allows local users to obtain server and virtual-machine administrative privileges by establishing a server session with Active Directory credentials, aka "Virtual Machine Manager Elevation of Privilege Vulnerability."

Learn more about our Cis Benchmark Audit For Server Software.