CVE-2018-6983

CVE Database · CVE-2018-6983

CVE-2018-6983

· N/AModified

CVSS v3.1

N/A

EPSS

0.45%

Published

Nov 27, 2018

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

VMware Workstation (15.x before 15.0.2 and 14.x before 14.1.5) and Fusion (11.x before 11.0.2 and 10.x before 10.1.5) contain an integer overflow vulnerability in the virtual network devices. This issue may allow a guest to execute code on the host.

Weaknesses (CWE)

CWE-190

Affected Products (5)

vmware · workstation (up to 14.1.5)vulnerable

vmware · workstation (up to 15.0.2)vulnerable

vmware · fusion (up to 10.1.5)vulnerable

vmware · fusion (up to 11.0.2)vulnerable

apple · mac_os_x

References (4)

http://www.securityfocus.com/bid/105986

Third Party AdvisoryVDB Entry

https://www.vmware.com/security/advisories/VMSA-2018-0030.html

Vendor Advisory

http://www.securityfocus.com/bid/105986

Third Party AdvisoryVDB Entry

https://www.vmware.com/security/advisories/VMSA-2018-0030.html

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs