CVE-2018-6963

CVE Database · CVE-2018-6963

CVE-2018-6963

· N/AModified

CVSS v3.1

N/A

EPSS

0.40%

Published

May 22, 2018

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

VMware Workstation (14.x before 14.1.2) and Fusion (10.x before 10.1.2) contain multiple denial-of-service vulnerabilities that occur due to NULL pointer dereference issues in the RPC handler. Successful exploitation of these issues may allow an attacker with limited privileges on the guest machine trigger a denial-of-Service of their guest machine.

Weaknesses (CWE)

CWE-476

Affected Products (2)

vmware · fusion (up to 10.1.2)vulnerable

vmware · workstation (up to 14.1.2)vulnerable

References (6)

http://www.securityfocus.com/bid/104237

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1040957

Third Party AdvisoryVDB Entry

https://www.vmware.com/security/advisories/VMSA-2018-0013.html

PatchVendor Advisory

http://www.securityfocus.com/bid/104237

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1040957

Third Party AdvisoryVDB Entry

https://www.vmware.com/security/advisories/VMSA-2018-0013.html

KEV Catalog EPSS Scores Vendors All CVEs