Workstation@12.5.4 Security Vulnerabilities and Issues — Workstation@12.5.4 CVE List

Lucene search

VmwareWorkstation12.5.4

8 matches found

CVE•added 2018/01/05 2:29 p.m.•107 views

CVE-2017-4945

VMware Workstation (14.x and 12.x) and Fusion (10.x and 8.x) contain a guest access control vulnerability. This issue may allow program execution via Unity on locked Windows VMs. VMware Tools must be updated to 10.2.0 for each VM to resolve CVE-2017-4945. VMware Tools 10.2.0 is consumed by Workstat...

5.5CVSS5.9AI score0.00062EPSS

CVE•added 2018/01/05 2:29 p.m.•60 views

CVE-2017-4948

VMware Workstation (14.x before 14.1.0 and 12.x) and Horizon View Client (4.x before 4.7.0) contain an out-of-bounds read vulnerability in TPView.dll. On Workstation, this issue in conjunction with other bugs may allow a guest to leak information from host or may allow for a Denial of Service on th...

7.1CVSS6.9AI score0.0004EPSS

CVE•added 2017/11/17 2:29 p.m.•53 views

CVE-2017-4938

VMware Workstation (12.x before 12.5.8) and Fusion (8.x before 8.5.9) contain a guest RPC NULL pointer dereference vulnerability. Successful exploitation of this issue may allow attackers with normal user privileges to crash their VMs.

6.5CVSS7.1AI score0.00046EPSS

CVE•added 2017/11/17 2:29 p.m.•51 views

CVE-2017-4935

VMware Workstation (12.x before 12.5.8) and Horizon View Client for Windows (4.x before 4.6.1) contain an out-of-bounds write vulnerability in JPEG2000 parser in the TPView.dll. On Workstation, this may allow a guest to execute code or perform a Denial of Service on the Windows OS that runs Worksta...

7.8CVSS7.9AI score0.00063EPSS

CVE•added 2017/11/17 2:29 p.m.•51 views

CVE-2017-4936

VMware Workstation (12.x before 12.5.8) and Horizon View Client for Windows (4.x before 4.6.1) contain an out-of-bounds read vulnerability in JPEG2000 parser in the TPView.dll. On Workstation, this may allow a guest to execute code or perform a Denial of Service on the Windows OS that runs Workstat...

7.8CVSS8.2AI score0.00051EPSS

CVE•added 2017/11/17 2:29 p.m.•48 views

CVE-2017-4934

VMware Workstation (12.x before 12.5.8) and Fusion (8.x before 8.5.9) contain a heap buffer-overflow vulnerability in VMNAT device. This issue may allow a guest to execute code on the host.

8.8CVSS8.6AI score0.00047EPSS

CVE•added 2017/11/17 9:29 p.m.•47 views

CVE-2017-4939

VMware Workstation (12.x before 12.5.8) installer contains a DLL hijacking issue that exists due to some DLL files loaded by the application improperly. This issue may allow an attacker to load a DLL file of the attacker's choosing that could execute arbitrary code.

7.8CVSS8.2AI score0.00173EPSS

CVE•added 2017/11/17 2:29 p.m.•43 views

CVE-2017-4937

7.8CVSS8.2AI score0.00063EPSS