Back to search
CVE-2017-4925
Published: Sep 15, 2017
Modified: Sep 17, 2024
PUBLISHED
Description
VMware ESXi 6.5 without patch ESXi650-201707101-SG, ESXi 6.0 without patch ESXi600-201706101-SG, ESXi 5.5 without patch ESXi550-201709101-SG, Workstation (12.x before 12.5.3), Fusion (8.x before 8.5.4) contain a NULL pointer dereference vulnerability. This issue occurs when handling guest RPC requests. Successful exploitation of this issue may allow attackers with normal user privileges to crash their VMs.
| Vendor | Product | Versions |
|---|---|---|
VMware | ESXi | affected 6.5 without patch ESXi650-201707101-SGaffected 6.0 without patch ESXi600-201706101-SGaffected 5.5 without patch ESXi550-201709101-SG |
VMware | Workstation | affected 12.x before 12.5.3 |
VMware | Fusion | affected 8.x before 8.5.4 |
References
1039368
vdb-entry
x_refsource_SECTRACK
100842
vdb-entry
x_refsource_BID
https://www.vmware.com/security/advisories/VMSA-2017-0015.html
x_refsource_CONFIRM
1039367
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now