CVE-2017-4933 - Vulnerability Details

Vendors	Products
Apple	Mac Os X
Vmware	Esxi Fusion Workstation Pro

Link	Providers
http://www.securitytracker.com/id/1040024
http://www.securitytracker.com/id/1040025
https://www.vmware.com/security/advisories/VMSA-2017-0021.html

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "ESXi", "vendor": "VMware", "versions": [{"status": "affected", "version": "6.5 before ESXi650-201710401-BG"}]}, {"product": "Workstation", "vendor": "VMware", "versions": [{"status": "affected", "version": "12.x before 12.5.8"}]}, {"product": "Fusion", "vendor": "VMware", "versions": [{"status": "affected", "version": "8.x before 8.5.9"}]}], "datePublic": "2017-12-19T00:00:00", "descriptions": [{"lang": "en", "value": "VMware ESXi (6.5 before ESXi650-201710401-BG), Workstation (12.x before 12.5.8), and Fusion (8.x before 8.5.9) contain a vulnerability that could allow an authenticated VNC session to cause a heap overflow via a specific set of VNC packets resulting in heap corruption. Successful exploitation of this issue could result in remote code execution in a virtual machine via the authenticated VNC session. Note: In order for exploitation to be possible in ESXi, VNC must be manually enabled in a virtual machine's .vmx configuration file. In addition, ESXi must be configured to allow VNC traffic through the built-in firewall."}], "problemTypes": [{"descriptions": [{"description": "Heap overflow via authenticated VNC session", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-12-21T10:57:01", "orgId": "dcf2e128-44bd-42ed-91e8-88f912c1401d", "shortName": "vmware"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://www.vmware.com/security/advisories/VMSA-2017-0021.html"}, {"name": "1040025", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1040025"}, {"name": "1040024", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1040024"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@vmware.com", "DATE_PUBLIC": "2017-12-19T00:00:00", "ID": "CVE-2017-4933", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "ESXi", "version": {"version_data": [{"version_value": "6.5 before ESXi650-201710401-BG"}]}}, {"product_name": "Workstation", "version": {"version_data": [{"version_value": "12.x before 12.5.8"}]}}, {"product_name": "Fusion", "version": {"version_data": [{"version_value": "8.x before 8.5.9"}]}}]}, "vendor_name": "VMware"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "VMware ESXi (6.5 before ESXi650-201710401-BG), Workstation (12.x before 12.5.8), and Fusion (8.x before 8.5.9) contain a vulnerability that could allow an authenticated VNC session to cause a heap overflow via a specific set of VNC packets resulting in heap corruption. Successful exploitation of this issue could result in remote code execution in a virtual machine via the authenticated VNC session. Note: In order for exploitation to be possible in ESXi, VNC must be manually enabled in a virtual machine's .vmx configuration file. In addition, ESXi must be configured to allow VNC traffic through the built-in firewall."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Heap overflow via authenticated VNC session"}]}]}, "references": {"reference_data": [{"name": "https://www.vmware.com/security/advisories/VMSA-2017-0021.html", "refsource": "CONFIRM", "url": "https://www.vmware.com/security/advisories/VMSA-2017-0021.html"}, {"name": "1040025", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1040025"}, {"name": "1040024", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1040024"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T14:47:43.676Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.vmware.com/security/advisories/VMSA-2017-0021.html"}, {"name": "1040025", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1040025"}, {"name": "1040024", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1040024"}]}]}, "cveMetadata": {"assignerOrgId": "dcf2e128-44bd-42ed-91e8-88f912c1401d", "assignerShortName": "vmware", "cveId": "CVE-2017-4933", "datePublished": "2017-12-20T15:00:00Z", "dateReserved": "2016-12-26T00:00:00", "dateUpdated": "2024-09-16T23:51:11.761Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : ESXi (string)

vendor : VMware (string)

versions : [ »

0 : { »

status : affected (string)

version : 6.5 before ESXi650-201710401-BG (string)

}

]

}

1 : { »

product : Workstation (string)

vendor : VMware (string)

versions : [ »

0 : { »

status : affected (string)

version : 12.x before 12.5.8 (string)

}

]

}

2 : { »

product : Fusion (string)

vendor : VMware (string)

versions : [ »

0 : { »

status : affected (string)

version : 8.x before 8.5.9 (string)

}

]

}

]

datePublic : 2017-12-19T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : VMware ESXi (6.5 before ESXi650-201710401-BG), Workstation (12.x before 12.5.8), and Fusion (8.x before 8.5.9) contain a vulnerability that could allow an authenticated VNC session to cause a heap overflow via a specific set of VNC packets resulting in heap corruption. Successful exploitation of this issue could result in remote code execution in a virtual machine via the authenticated VNC session. Note: In order for exploitation to be possible in ESXi, VNC must be manually enabled in a virtual machine's .vmx configuration file. In addition, ESXi must be configured to allow VNC traffic through the built-in firewall. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : Heap overflow via authenticated VNC session (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2017-12-21T10:57:01 (string)

orgId : dcf2e128-44bd-42ed-91e8-88f912c1401d (string)

shortName : vmware (string)

}

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : https://www.vmware.com/security/advisories/VMSA-2017-0021.html (string)

}

1 : { »

name : 1040025 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

]

url : http://www.securitytracker.com/id/1040025 (string)

}

2 : { »

name : 1040024 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

]

url : http://www.securitytracker.com/id/1040024 (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : security@vmware.com (string)

DATE_PUBLIC : 2017-12-19T00:00:00 (string)

ID : CVE-2017-4933 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : ESXi (string)

version : { »

version_data : [ »

0 : { »

version_value : 6.5 before ESXi650-201710401-BG (string)

}

]

}

1 : { »

product_name : Workstation (string)

version : { »

version_data : [ »

0 : { »

version_value : 12.x before 12.5.8 (string)

}

]

}

2 : { »

product_name : Fusion (string)

version : { »

version_data : [ »

0 : { »

version_value : 8.x before 8.5.9 (string)

}

]

}

]

}

vendor_name : VMware (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : VMware ESXi (6.5 before ESXi650-201710401-BG), Workstation (12.x before 12.5.8), and Fusion (8.x before 8.5.9) contain a vulnerability that could allow an authenticated VNC session to cause a heap overflow via a specific set of VNC packets resulting in heap corruption. Successful exploitation of this issue could result in remote code execution in a virtual machine via the authenticated VNC session. Note: In order for exploitation to be possible in ESXi, VNC must be manually enabled in a virtual machine's .vmx configuration file. In addition, ESXi must be configured to allow VNC traffic through the built-in firewall. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : Heap overflow via authenticated VNC session (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : https://www.vmware.com/security/advisories/VMSA-2017-0021.html (string)

refsource : CONFIRM (string)

url : https://www.vmware.com/security/advisories/VMSA-2017-0021.html (string)

}

1 : { »

name : 1040025 (string)

refsource : SECTRACK (string)

url : http://www.securitytracker.com/id/1040025 (string)

}

2 : { »

name : 1040024 (string)

refsource : SECTRACK (string)

url : http://www.securitytracker.com/id/1040024 (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-05T14:47:43.676Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : https://www.vmware.com/security/advisories/VMSA-2017-0021.html (string)

}

1 : { »

name : 1040025 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

2 : x_transferred (string)

]

url : http://www.securitytracker.com/id/1040025 (string)

}

2 : { »

name : 1040024 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

2 : x_transferred (string)

]

url : http://www.securitytracker.com/id/1040024 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : dcf2e128-44bd-42ed-91e8-88f912c1401d (string)

assignerShortName : vmware (string)

cveId : CVE-2017-4933 (string)

datePublished : 2017-12-20T15:00:00Z (string)

dateReserved : 2016-12-26T00:00:00 (string)

dateUpdated : 2024-09-16T23:51:11.761Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:vmware:workstation_pro:*:*:*:*:*:*:*:*", "matchCriteriaId": "FE8FC688-FBC8-4BBF-BEC6-D8B85B61C3D4", "versionEndExcluding": "12.5.8", "versionStartIncluding": "12.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:vmware:workstation_pro:14.0:*:*:*:*:*:*:*", "matchCriteriaId": "CFC8B7E0-C0D4-416C-B9BD-011B0DCE9A07", "vulnerable": true}, {"criteria": "cpe:2.3:a:vmware:workstation_pro:14.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "4E5AECF4-F516-4FB8-906D-E8608D331C35", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:-:*:*:*:*:*:*", "matchCriteriaId": "FBA15143-734D-4889-8B5A-2445A2DDDD4B", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201701001:*:*:*:*:*:*", "matchCriteriaId": "04FA10C6-2B0D-47C9-8C4E-1BA98C97DC7A", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201703001:*:*:*:*:*:*", "matchCriteriaId": "0D2ED442-3F6D-472A-AA98-51D05A65B2E0", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201703002:*:*:*:*:*:*", "matchCriteriaId": "2A71EC72-3389-4EC7-8104-2A78F7B8C0DC", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201704001:*:*:*:*:*:*", "matchCriteriaId": "F948E806-0F73-4145-A723-7A43BA45842B", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707101:*:*:*:*:*:*", "matchCriteriaId": "75FAFF86-C65F-4723-8A63-BACE2F797937", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707102:*:*:*:*:*:*", "matchCriteriaId": "DBC31DE3-ACFE-422F-B253-2FE4AAFE3954", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707103:*:*:*:*:*:*", "matchCriteriaId": "B30B3EA4-495F-4915-B6E3-5FB9277C2DE6", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707201:*:*:*:*:*:*", "matchCriteriaId": "6FA9E337-B4F3-4895-BA58-962F8CDEE73E", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707202:*:*:*:*:*:*", "matchCriteriaId": "830B0BC1-A368-49AC-B6C9-B000972EF92A", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707203:*:*:*:*:*:*", "matchCriteriaId": "614394F3-3BEE-4E12-AABF-436D54A04313", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707204:*:*:*:*:*:*", "matchCriteriaId": "350FD3CE-8B64-4FCF-82DE-BE941156F4F6", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707205:*:*:*:*:*:*", "matchCriteriaId": "C9EAE177-6C7E-4C1B-ADEE-2C036F731272", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707206:*:*:*:*:*:*", "matchCriteriaId": "DFFEEC31-8462-4DF9-A1DA-D7057C209CBA", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707207:*:*:*:*:*:*", "matchCriteriaId": "0AC6BC16-0A1D-44B3-BA68-63EA05EDD54B", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707208:*:*:*:*:*:*", "matchCriteriaId": "942DAD67-9455-4D02-BD3B-BFD2DE7A7E52", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707209:*:*:*:*:*:*", "matchCriteriaId": "7ACC1A72-F6B6-430A-AB89-AB0A11587F58", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707210:*:*:*:*:*:*", "matchCriteriaId": "45111C74-BF6F-4C05-A0D3-CE325AD0C02B", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707211:*:*:*:*:*:*", "matchCriteriaId": "B1CE5849-01B1-4E36-83E8-496A3F328C9C", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707212:*:*:*:*:*:*", "matchCriteriaId": "A879BA05-3A80-4EBC-AA9D-9B53695425B4", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707213:*:*:*:*:*:*", "matchCriteriaId": "3D65A0E8-A1E0-42F3-B77D-2F32979278BB", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707214:*:*:*:*:*:*", "matchCriteriaId": "80C10150-39BA-4818-B48F-8645D4A0D316", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707215:*:*:*:*:*:*", "matchCriteriaId": "9792B986-86EF-40E0-9427-A45F858717E1", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707216:*:*:*:*:*:*", "matchCriteriaId": "37EDD688-C91A-4A35-913A-82E156ADD242", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707217:*:*:*:*:*:*", "matchCriteriaId": "5CC1AC0E-8D3F-46C0-BDA9-EB9DC9971F57", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707218:*:*:*:*:*:*", "matchCriteriaId": "47DA50DA-7CA4-4B76-8B3B-A5732509F71D", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707219:*:*:*:*:*:*", "matchCriteriaId": "76EB1A04-0645-4909-AEF9-33D6FADA4793", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707220:*:*:*:*:*:*", "matchCriteriaId": "F1A35723-D968-42D6-89EB-86CA550516E6", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201707221:*:*:*:*:*:*", "matchCriteriaId": "C3AC8A19-F98E-48F1-A1EA-EAA1C7208335", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:6.5:650-201710001:*:*:*:*:*:*", "matchCriteriaId": "2D6A3952-8429-4762-8701-47D7C1F05A5F", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:vmware:fusion:*:*:*:*:*:*:*:*", "matchCriteriaId": "20740117-8BC1-47B8-AA10-8ADF91F1CA86", "versionEndExcluding": "8.5.9", "versionStartIncluding": "8.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*", "matchCriteriaId": "4781BF1E-8A4E-4AFF-9540-23D523EE30DD", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "VMware ESXi (6.5 before ESXi650-201710401-BG), Workstation (12.x before 12.5.8), and Fusion (8.x before 8.5.9) contain a vulnerability that could allow an authenticated VNC session to cause a heap overflow via a specific set of VNC packets resulting in heap corruption. Successful exploitation of this issue could result in remote code execution in a virtual machine via the authenticated VNC session. Note: In order for exploitation to be possible in ESXi, VNC must be manually enabled in a virtual machine's .vmx configuration file. In addition, ESXi must be configured to allow VNC traffic through the built-in firewall."}, {"lang": "es", "value": "VMware ESXi (6.5 anteriores a ESXi650-201710401-BG), Workstation (12.x anteriores a la 12.5.8) y Fusion (8.x anteriores a la 8.5.9) contienen una vulnerabilidad que podr\u00eda permitir que una sesi\u00f3n VNC autenticada provoque un desbordamiento de memoria din\u00e1mica (heap) mediante una serie espec\u00edfica de paquetes VNC, resultando en una corrupci\u00f3n de memoria din\u00e1mica. La explotaci\u00f3n exitosa de esta vulnerabilidad podr\u00eda resultar en la ejecuci\u00f3n remota de c\u00f3digo en una m\u00e1quina virtual mediante la sesi\u00f3n VNC autenticada. Nota: Para que sea posible la explotaci\u00f3n en ESXi, VNC debe estar habilitado manualmente en un archivo de configuraci\u00f3n .vmx de la m\u00e1quina virtual. Adem\u00e1s, ESXi se debe configurar para permitir el tr\u00e1fico VNC a trav\u00e9s del firewall incorporado."}], "id": "CVE-2017-4933", "lastModified": "2024-11-21T03:26:41.893", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 6.8, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-12-20T15:29:00.217", "references": [{"source": "security@vmware.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1040024"}, {"source": "security@vmware.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1040025"}, {"source": "security@vmware.com", "tags": ["Issue Tracking", "Vendor Advisory"], "url": "https://www.vmware.com/security/advisories/VMSA-2017-0021.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1040024"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1040025"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Vendor Advisory"], "url": "https://www.vmware.com/security/advisories/VMSA-2017-0021.html"}], "sourceIdentifier": "security@vmware.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-787"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:vmware:workstation_pro:*:*:*:*:*:*:*:* (string)

matchCriteriaId : FE8FC688-FBC8-4BBF-BEC6-D8B85B61C3D4 (string)

versionEndExcluding : 12.5.8 (string)

versionStartIncluding : 12.0.0 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:vmware:workstation_pro:14.0:*:*:*:*:*:*:* (string)

matchCriteriaId : CFC8B7E0-C0D4-416C-B9BD-011B0DCE9A07 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:vmware:workstation_pro:14.1.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 4E5AECF4-F516-4FB8-906D-E8608D331C35 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:-:*:*:*:*:*:* (string)

matchCriteriaId : FBA15143-734D-4889-8B5A-2445A2DDDD4B (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201701001:*:*:*:*:*:* (string)

matchCriteriaId : 04FA10C6-2B0D-47C9-8C4E-1BA98C97DC7A (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201703001:*:*:*:*:*:* (string)

matchCriteriaId : 0D2ED442-3F6D-472A-AA98-51D05A65B2E0 (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201703002:*:*:*:*:*:* (string)

matchCriteriaId : 2A71EC72-3389-4EC7-8104-2A78F7B8C0DC (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201704001:*:*:*:*:*:* (string)

matchCriteriaId : F948E806-0F73-4145-A723-7A43BA45842B (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707101:*:*:*:*:*:* (string)

matchCriteriaId : 75FAFF86-C65F-4723-8A63-BACE2F797937 (string)

vulnerable : true (boolean)

}

9 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707102:*:*:*:*:*:* (string)

matchCriteriaId : DBC31DE3-ACFE-422F-B253-2FE4AAFE3954 (string)

vulnerable : true (boolean)

}

10 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707103:*:*:*:*:*:* (string)

matchCriteriaId : B30B3EA4-495F-4915-B6E3-5FB9277C2DE6 (string)

vulnerable : true (boolean)

}

11 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707201:*:*:*:*:*:* (string)

matchCriteriaId : 6FA9E337-B4F3-4895-BA58-962F8CDEE73E (string)

vulnerable : true (boolean)

}

12 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707202:*:*:*:*:*:* (string)

matchCriteriaId : 830B0BC1-A368-49AC-B6C9-B000972EF92A (string)

vulnerable : true (boolean)

}

13 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707203:*:*:*:*:*:* (string)

matchCriteriaId : 614394F3-3BEE-4E12-AABF-436D54A04313 (string)

vulnerable : true (boolean)

}

14 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707204:*:*:*:*:*:* (string)

matchCriteriaId : 350FD3CE-8B64-4FCF-82DE-BE941156F4F6 (string)

vulnerable : true (boolean)

}

15 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707205:*:*:*:*:*:* (string)

matchCriteriaId : C9EAE177-6C7E-4C1B-ADEE-2C036F731272 (string)

vulnerable : true (boolean)

}

16 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707206:*:*:*:*:*:* (string)

matchCriteriaId : DFFEEC31-8462-4DF9-A1DA-D7057C209CBA (string)

vulnerable : true (boolean)

}

17 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707207:*:*:*:*:*:* (string)

matchCriteriaId : 0AC6BC16-0A1D-44B3-BA68-63EA05EDD54B (string)

vulnerable : true (boolean)

}

18 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707208:*:*:*:*:*:* (string)

matchCriteriaId : 942DAD67-9455-4D02-BD3B-BFD2DE7A7E52 (string)

vulnerable : true (boolean)

}

19 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707209:*:*:*:*:*:* (string)

matchCriteriaId : 7ACC1A72-F6B6-430A-AB89-AB0A11587F58 (string)

vulnerable : true (boolean)

}

20 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707210:*:*:*:*:*:* (string)

matchCriteriaId : 45111C74-BF6F-4C05-A0D3-CE325AD0C02B (string)

vulnerable : true (boolean)

}

21 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707211:*:*:*:*:*:* (string)

matchCriteriaId : B1CE5849-01B1-4E36-83E8-496A3F328C9C (string)

vulnerable : true (boolean)

}

22 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707212:*:*:*:*:*:* (string)

matchCriteriaId : A879BA05-3A80-4EBC-AA9D-9B53695425B4 (string)

vulnerable : true (boolean)

}

23 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707213:*:*:*:*:*:* (string)

matchCriteriaId : 3D65A0E8-A1E0-42F3-B77D-2F32979278BB (string)

vulnerable : true (boolean)

}

24 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707214:*:*:*:*:*:* (string)

matchCriteriaId : 80C10150-39BA-4818-B48F-8645D4A0D316 (string)

vulnerable : true (boolean)

}

25 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707215:*:*:*:*:*:* (string)

matchCriteriaId : 9792B986-86EF-40E0-9427-A45F858717E1 (string)

vulnerable : true (boolean)

}

26 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707216:*:*:*:*:*:* (string)

matchCriteriaId : 37EDD688-C91A-4A35-913A-82E156ADD242 (string)

vulnerable : true (boolean)

}

27 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707217:*:*:*:*:*:* (string)

matchCriteriaId : 5CC1AC0E-8D3F-46C0-BDA9-EB9DC9971F57 (string)

vulnerable : true (boolean)

}

28 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707218:*:*:*:*:*:* (string)

matchCriteriaId : 47DA50DA-7CA4-4B76-8B3B-A5732509F71D (string)

vulnerable : true (boolean)

}

29 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707219:*:*:*:*:*:* (string)

matchCriteriaId : 76EB1A04-0645-4909-AEF9-33D6FADA4793 (string)

vulnerable : true (boolean)

}

30 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707220:*:*:*:*:*:* (string)

matchCriteriaId : F1A35723-D968-42D6-89EB-86CA550516E6 (string)

vulnerable : true (boolean)

}

31 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201707221:*:*:*:*:*:* (string)

matchCriteriaId : C3AC8A19-F98E-48F1-A1EA-EAA1C7208335 (string)

vulnerable : true (boolean)

}

32 : { »

criteria : cpe:2.3:o:vmware:esxi:6.5:650-201710001:*:*:*:*:*:* (string)

matchCriteriaId : 2D6A3952-8429-4762-8701-47D7C1F05A5F (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

1 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:vmware:fusion:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 20740117-8BC1-47B8-AA10-8ADF91F1CA86 (string)

versionEndExcluding : 8.5.9 (string)

versionStartIncluding : 8.0.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 4781BF1E-8A4E-4AFF-9540-23D523EE30DD (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : VMware ESXi (6.5 before ESXi650-201710401-BG), Workstation (12.x before 12.5.8), and Fusion (8.x before 8.5.9) contain a vulnerability that could allow an authenticated VNC session to cause a heap overflow via a specific set of VNC packets resulting in heap corruption. Successful exploitation of this issue could result in remote code execution in a virtual machine via the authenticated VNC session. Note: In order for exploitation to be possible in ESXi, VNC must be manually enabled in a virtual machine's .vmx configuration file. In addition, ESXi must be configured to allow VNC traffic through the built-in firewall. (string)

}

1 : { »

lang : es (string)

value : VMware ESXi (6.5 anteriores a ESXi650-201710401-BG), Workstation (12.x anteriores a la 12.5.8) y Fusion (8.x anteriores a la 8.5.9) contienen una vulnerabilidad que podría permitir que una sesión VNC autenticada provoque un desbordamiento de memoria dinámica (heap) mediante una serie específica de paquetes VNC, resultando en una corrupción de memoria dinámica. La explotación exitosa de esta vulnerabilidad podría resultar en la ejecución remota de código en una máquina virtual mediante la sesión VNC autenticada. Nota: Para que sea posible la explotación en ESXi, VNC debe estar habilitado manualmente en un archivo de configuración .vmx de la máquina virtual. Además, ESXi se debe configurar para permitir el tráfico VNC a través del firewall incorporado. (string)

}

]

id : CVE-2017-4933 (string)

lastModified : 2024-11-21T03:26:41.893 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : MEDIUM (string)

accessVector : NETWORK (string)

authentication : SINGLE (string)

availabilityImpact : PARTIAL (string)

baseScore : 6 (number)

confidentialityImpact : PARTIAL (string)

integrityImpact : PARTIAL (string)

vectorString : AV:N/AC:M/Au:S/C:P/I:P/A:P (string)

version : 2.0 (string)

}

exploitabilityScore : 6.8 (number)

impactScore : 6.4 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 8.8 (number)

baseSeverity : HIGH (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

privilegesRequired : LOW (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 2.8 (number)

impactScore : 5.9 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2017-12-20T15:29:00.217 (string)

references : [ »

0 : { »

source : security@vmware.com (string)

tags : [ »

0 : Third Party Advisory (string)

1 : VDB Entry (string)

]

url : http://www.securitytracker.com/id/1040024 (string)

}

1 : { »

source : security@vmware.com (string)

tags : [ »

0 : Third Party Advisory (string)

1 : VDB Entry (string)

]

url : http://www.securitytracker.com/id/1040025 (string)

}

2 : { »

source : security@vmware.com (string)

tags : [ »

0 : Issue Tracking (string)

1 : Vendor Advisory (string)

]

url : https://www.vmware.com/security/advisories/VMSA-2017-0021.html (string)

}

3 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Third Party Advisory (string)

1 : VDB Entry (string)

]

url : http://www.securitytracker.com/id/1040024 (string)

}

4 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Third Party Advisory (string)

1 : VDB Entry (string)

]

url : http://www.securitytracker.com/id/1040025 (string)

}

5 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Issue Tracking (string)

1 : Vendor Advisory (string)

]

url : https://www.vmware.com/security/advisories/VMSA-2017-0021.html (string)

}

]

sourceIdentifier : security@vmware.com (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-787 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Medium

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Medium

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object