← voltar
CVE-2017-4950

CVE-2017-4950

EPSS 0.4%
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
11 jan 2018Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
VMware Workstation and Fusion contain an integer overflow vulnerability in VMware NAT service when IPv6 mode is enabled. This issue may lead to an out-of-bound read which can then be used to execute code on the host in conjunction with other issues. Note: IPv6 mode for VMNAT is not enabled by default.
Produtos afetados
VMware · FusionVMware · Workstation Pro / Player

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://www.vmware.com/security/advisories/VMSA-2018-0005.htmlhttp://www.securityfocus.com/bid/102490http://www.securitytracker.com/id/1040161