CVE Database · CVE-2017-4901
CVSS v3.1
N/A
EPSS
19.94%
Published
Jun 8, 2017
Modified
May 12, 2026
Public PoC / Exploit (2)
All weaponized →Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
The drag-and-drop (DnD) function in VMware Workstation 12.x before version 12.5.4 and Fusion 8.x before version 8.5.5 has an out-of-bounds memory access vulnerability. This may allow a guest to execute code on the operating system that runs Workstation or Fusion.
Weaknesses (CWE)
Affected Products (18)
References (6)
