8.8
CVSSv3

CVE-2017-4903

Published: 07/06/2017 Updated: 03/02/2022
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
CVSS v3 Base Score: 8.8 | Impact Score: 6 | Exploitability Score: 2
VMScore: 641
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

VMware ESXi 6.5 without patch ESXi650-201703410-SG, 6.0 U3 without patch ESXi600-201703401-SG, 6.0 U2 without patch ESXi600-201703403-SG, 6.0 U1 without patch ESXi600-201703402-SG, and 5.5 without patch ESXi550-201703401-SG; Workstation Pro / Player 12.x before 12.5.5; and Fusion Pro / Fusion 8.x before 8.5.6 have an uninitialized stack memory usage in SVGA. This issue may allow a guest to execute code on the host.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

vmware workstation player

vmware workstation pro

vmware esxi 5.5

vmware esxi 6.0

vmware esxi 6.5

vmware fusion

vmware fusion_pro