What is CVE-2016-7087?

CVE-2016-7087 is a medium-severity vulnerability in Microsoft Windows, classified under Path Traversal. CVSS score: 5.3/10. Published 2016-12-29.

How severe is CVE-2016-7087?

Medium severity. CVSS v3 base score is 5.3 out of 10.

Path Traversal in Microsoft Windows

CVE-2016-7087

Directory traversal vulnerability in the Connection Server in VMware Horizon View 5.x before 5.3.7, 6.x before 6.2.3, and 7.x before 7.0.1 allows remote attackers to obtain sensitive information via unspecified vectors.

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.024 (85.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N.

Affected products

Microsoft Windows
Vmware Horizon_view — versions 5.0, 5.0.1, 5.1
N/a — versions n/a

Weakness classification (CWE)

CWE-22 — Path Traversal

References

93455 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
cve@mitre.org (x_refsource_CONFIRM, Patch, Vendor Advisory)
1036972 (vdb-entry, x_refsource_SECTRACK)

Frequently asked questions

What is CVE-2016-7087?: CVE-2016-7087 is a medium-severity vulnerability in Microsoft Windows, classified under Path Traversal. CVSS score: 5.3/10. Published 2016-12-29.
How severe is CVE-2016-7087?: Medium severity. CVSS v3 base score is 5.3 out of 10.