Lucene search

K
vmwareVMwareVMSA-2017-0015
HistorySep 14, 2017 - 12:00 a.m.

VMware ESXi, vCenter Server, Fusion and Workstation updates resolve multiple security vulnerabilities

2017-09-1400:00:00
www.vmware.com
512

EPSS

0.003

Percentile

65.6%

**a. Out-of-bounds write vulnerability in SVGA **

VMware ESXi, Workstation and Fusion contain an out-of-bounds write vulnerability in SVGA device. This issue may allow a guest to execute code on the host.

VMware would like to thank Nico Golde and Ralf-Philipp Weinmann of Comsecuris UG (haftungsbeschraenkt) working with ZDI for reporting this issue to us.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifier CVE-2017-4924 to this issue.

Column 5 of the following table lists the action required to remediate the vulnerability in each release, if a solution is available.