CVE-2017-4919

Published: Jul 28, 2017

Modified: Sep 16, 2024

PUBLISHED

Description

VMware vCenter Server 5.5, 6.0, 6.5 allows vSphere users with certain, limited vSphere privileges to use the VIX API to access Guest Operating Systems without the need to authenticate.

Vendor	Product	Versions
VMware	VMware vCenter Server	affected `VMware vCenter Server 5.5.x, 6.0.x, 6.5.x`

References

1039004

vdb-entry

x_refsource_SECTRACK

http://www.vmware.com/security/advisories/VMSA-2017-0012.html

x_refsource_CONFIRM

100102

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-4919

Description

Affected Products

References