GHSA-XP75-R577-CVHP Privileged OpenBao Operator May Execute Code on the Underlying Host

Impact Under certain threat models, OpenBao operators with privileged API access may not be system administrators and thus normally lack the ability to update binaries or execute code on the system. Additionally, privileged API operators should be unable to perform TCP connections to arbitrary...

CVE-2017-4924

VMware ESXi ESXi 6.5 without patch ESXi650-201707101-SG, Workstation 12.x before 12.5.7 and Fusion 8.x before 8.5.8 contain an out-of-bounds write vulnerability in SVGA device. This issue may allow a guest to execute code on the host...