CVE-2018-6957

VMware Workstation 14.x before 14.1.1, 12.x and Fusion 10.x before 10.1.1 and 8.x contain a denial-of-service vulnerability which can be triggered by opening a large number of VNC sessions. Note: In order for exploitation to be possible on Workstation and Fusion, VNC must be manually enabled...

CVE-2017-4933

VMware ESXi 6.5 before ESXi650-201710401-BG, Workstation 12.x before 12.5.8, and Fusion 8.x before 8.5.9 contain a vulnerability that could allow an authenticated VNC session to cause a heap overflow via a specific set of VNC packets resulting in heap corruption. Successful exploitation of this...