Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vmwareVMwareVMSA-2017-0015.2
HistorySep 14, 2017 - 12:00 a.m.

VMware ESXi, vCenter Server, Fusion and Workstation updates resolve multiple security vulnerabilities

2017-09-1400:00:00
www.vmware.com
11

0.003 Low

EPSS

Percentile

65.6%

JSON

a. Out-of-bounds write vulnerability in SVGA

VMware ESXi, Workstation and Fusion contain an out-of-bounds write vulnerability in SVGA device. This issue may allow a guest to execute code on the host.

VMware would like to thank Nico Golde and Ralf-Philipp Weinmann of Comsecuris UG (haftungsbeschraenkt) working with ZDI for reporting this issue to us.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifier CVE-2017-4924 to this issue.

Column 5 of the following table lists the action required to remediate the vulnerability in each release, if a solution is available.

Related

vmware 1
kaspersky 1
nessus 9
myhack58 1
prion 3
nvd 3
openvas 9
cve 3
cvelist 3
threatpost 1
zdi 1
ibm 1
vmware
vmware
VMware ESXi, vCenter Server, Fusion and Workstation updates resolve multiple security vulnerabilities
2017-09-14 00:00:00
kaspersky
kaspersky
KLA11110 Multiple vulnerabilities in VMware products
2017-09-14 00:00:00
nessus
nessus
VMSA-2017-0015 : VMware ESXi, vCenter Server, Fusion and Workstation updates resolve multiple security vulnerabilities
2017-09-20 00:00:00
ESXi 6.5 < Build 5969300 Multiple Vulnerabilities (VMSA-2017-0015) (remote check)
2017-09-21 00:00:00
VMware Workstation 12.x < 12.5.7 Multiple Vulnerabilities (VMSA-2017-0015) (Linux)
2017-09-21 00:00:00
myhack58
myhack58
Many high-risk SVGA code execution vulnerability bug,VMware efforts to be patched-vulnerabilities and early warning-the black bar safety net
2017-09-20 00:00:00
prion
prion
Null pointer dereference
2017-09-15 13:29:00
Cross site scripting
2017-09-15 13:29:00
Out-of-bounds
2017-09-15 13:29:00
nvd
nvd
CVE-2017-4926
2017-09-15 13:29:00
CVE-2017-4925
2017-09-15 13:29:00
CVE-2017-4924
2017-09-15 13:29:00
openvas
openvas
VMware vCenter Server H5 Client Stored XSS Vulnerability (VMSA-2017-0015)
2017-09-22 00:00:00
VMware Fusion Guest RPC Null Pointer Dereference Vulnerability - Mac OS X
2017-09-20 00:00:00
VMware ESXi Guest RPC Null Pointer Dereference Vulnerability (VMSA-2017-0015)
2017-09-22 00:00:00
cve
cve
CVE-2017-4926
2017-09-15 13:29:00
CVE-2017-4925
2017-09-15 13:29:00
CVE-2017-4924
2017-09-15 13:29:00
cvelist
cvelist
CVE-2017-4926
2017-09-14 00:00:00
CVE-2017-4925
2017-09-14 00:00:00
CVE-2017-4924
2017-09-14 00:00:00
threatpost
threatpost
VMware Patches Bug That Allows Guest to Execute Code on Host
2017-09-15 11:51:18
zdi
zdi
VMware Workstation Shader Out-Of-Bounds Write Privilege Escalation Vulnerability
2017-09-15 00:00:00
ibm
ibm
Security Bulletin: Open Source VMware Fusion Vulnerabilities in IBM Pure Application System (CVE-2017-4903, CVE-2017-4904, CVE-2017-4905)
2019-06-25 19:40:02

0.003 Low

EPSS

Percentile

65.6%

JSON
Related for VMSA-2017-0015.2
vmware1kaspersky1nessus9myhack581prion3nvd3openvas9cve3cvelist3threatpost1zdi1ibm1