Lucene search
VMwareVMSA-2018-0003HistoryJan 04, 2018 - 12:00 a.m.
vRealize Operations for Horizon, vRealize Operations for Published Applications, Workstation, Horizon View Client and Tools updates resolve multiple security vulnerabilities
2018-01-0400:00:00
www.vmware.com
477
0.001 Low
EPSS
Percentile
26.9%
a. V4H and V4PA desktop agent privilege escalation vulnerability
The V4H and V4PA desktop agents contain a privilege escalation vulnerability. Successful exploitation of this issue could result in a low privileged windows user escalating their privileges to SYSTEM.
VMware would like to thank Martin Lemay of GoSecure Inc. for reporting this issue to us. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifier CVE-2017-4946 to this issue.
Column 5 of the following table lists the action required to remediate the vulnerability in each release, if a solution is available.
| CPE | Name | Operator | Version |
|---|---|---|---|
| v4h | lt | 6.5.1 | |
| v4pa | lt | 6.5.1 | |
| horizon view client for windows | lt | 4.7.0 | |
| workstation | lt | 14.1.0 | |
| workstation | eq | 12.x | |
| fusion | eq | 8.x |
Related
kaspersky
kaspersky
KLA11175 DoS and ACE vulnerabilities in VMware Products
2018-01-04 00:00:00
nessus
nessus
prion
prion
Privilege escalation
2018-01-05 14:29:00
Out-of-bounds
2018-01-05 14:29:00
Design/Logic Flaw
2018-01-05 14:29:00
cvelist
cvelist
cve
cve
nvd
nvd