CVE-2018-6963

EPSS 0.4%

Vexday Risk Score

3Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 0.4%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

22 May 2018Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

VMware Workstation (14.x before 14.1.2) and Fusion (10.x before 10.1.2) contain multiple denial-of-service vulnerabilities that occur due to NULL pointer dereference issues in the RPC handler. Successful exploitation of these issues may allow an attacker with limited privileges on the guest machine trigger a denial-of-Service of their guest machine.

Affected products

VMware · Fusion VMware · Workstation

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.vmware.com/security/advisories/VMSA-2018-0013.html http://www.securityfocus.com/bid/104237 http://www.securitytracker.com/id/1040957