|
249311
|
7.0 |
HIGH
Local
|
vmware
|
fusion
workstation
|
VMware Workstation and Fusion contain a use-after-free vulnerability in VMware NAT service when IPv6 mode is enabled. This issue may allow a guest to execute code on the host. Note: IPv6 mode for VMN…
|
CWE-416
Use After Free
|
CVE-2017-4949
|
2024-11-21 12:26 |
2018-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249312
|
7.0 |
HIGH
Local
|
lenovo
|
enterprise_network_operating_system
|
In Enterprise Networking Operating System (ENOS) in Lenovo and IBM RackSwitch and BladeCenter products, an authentication bypass known as "HP Backdoor" was discovered during a Lenovo security audit i…
|
CWE-287
Improper Authentication
|
CVE-2017-3765
|
2024-11-21 12:26 |
2018-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249313
|
7.1 |
HIGH
Local
|
vmware
|
workstation
horizon_view
|
VMware Workstation (14.x before 14.1.0 and 12.x) and Horizon View Client (4.x before 4.7.0) contain an out-of-bounds read vulnerability in TPView.dll. On Workstation, this issue in conjunction with o…
|
CWE-200
CWE-125
Information Exposure
Out-of-bounds Read
|
CVE-2017-4948
|
2024-11-21 12:26 |
2018-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249314
|
7.8 |
HIGH
Local
|
vmware
|
vrealize_operations_for_published_applications
vrealize_operations_for_horizon
|
The VMware V4H and V4PA desktop agents (6.x before 6.5.1) contain a privilege escalation vulnerability. Successful exploitation of this issue could result in a low privileged windows user escalating …
|
CWE-863
Incorrect Authorization
|
CVE-2017-4946
|
2024-11-21 12:26 |
2018-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249315
|
5.5 |
MEDIUM
Local
|
vmware
|
workstation
fusion
|
VMware Workstation (14.x and 12.x) and Fusion (10.x and 8.x) contain a guest access control vulnerability. This issue may allow program execution via Unity on locked Windows VMs. VMware Tools must be…
|
NVD-CWE-noinfo
|
CVE-2017-4945
|
2024-11-21 12:26 |
2018-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249316
|
7.8 |
HIGH
Local
|
vmware
|
vcenter_server
|
VMware vCenter Server Appliance (vCSA) (6.5 before 6.5 U1d) contains a local privilege escalation vulnerability via the 'showlog' plugin. Successful exploitation of this issue could result in a low p…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-4943
|
2024-11-21 12:26 |
2017-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249317
|
8.8 |
HIGH
Network
|
vmware
|
fusion
workstation
esxi
|
VMware ESXi (6.0 before ESXi600-201711101-SG, 5.5 ESXi550-201709101-SG), Workstation (12.x before 12.5.8), and Fusion (8.x before 8.5.9) contain a vulnerability that could allow an authenticated VNC …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-4941
|
2024-11-21 12:26 |
2017-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249318
|
6.1 |
MEDIUM
Network
|
vmware
|
esxi
|
The ESXi Host Client in VMware ESXi (6.5 before ESXi650-201712103-SG, 5.5 before ESXi600-201711103-SG and 5.5 before ESXi550-201709102-SG) contains a vulnerability that may allow for stored cross-sit…
|
CWE-79
Cross-site Scripting
|
CVE-2017-4940
|
2024-11-21 12:26 |
2017-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249319
|
8.8 |
HIGH
Network
|
vmware
|
workstation_pro
esxi
fusion
|
VMware ESXi (6.5 before ESXi650-201710401-BG), Workstation (12.x before 12.5.8), and Fusion (8.x before 8.5.9) contain a vulnerability that could allow an authenticated VNC session to cause a heap ov…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-4933
|
2024-11-21 12:26 |
2017-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249320
|
4.9 |
MEDIUM
Network
|
vmware
|
airwatch_console
|
VMware AirWatch Console (AWC) contains a Broken Access Control vulnerability. Successful exploitation of this issue could result in end-user device details being disclosed to an unauthorized administ…
|
NVD-CWE-noinfo
|
CVE-2017-4942
|
2024-11-21 12:26 |
2017-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
