CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2018-6963 – VMware Workstation ghi update Null Pointer Dereference Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2018-6963
21 May 2018 — VMware Workstation (14.x before 14.1.2) and Fusion (10.x before 10.1.2) contain multiple denial-of-service vulnerabilities that occur due to NULL pointer dereference issues in the RPC handler. Successful exploitation of these issues may allow an attacker with limited privileges on the guest machine trigger a denial-of-Service of their guest machine. VMware Fusion (versiones 10.x anteriores a la 10.1.2) contiene una vulnerabilidad de omisión de firmas que podría conducir a un escalado de privilegios local. T... • http://www.securityfocus.com/bid/104237 • CWE-476: NULL Pointer Dereference •
CVSS: 5.3EPSS: 0%CPEs: 41EXPL: 0CVE-2018-6957 – VMware Security Advisory 2018-0008
https://notcve.org/view.php?id=CVE-2018-6957
15 Mar 2018 — VMware Workstation (14.x before 14.1.1, 12.x) and Fusion (10.x before 10.1.1 and 8.x) contain a denial-of-service vulnerability which can be triggered by opening a large number of VNC sessions. Note: In order for exploitation to be possible on Workstation and Fusion, VNC must be manually enabled. VMware Workstation (versiones 14.x anteriores a la 14.1.1 y 12.x) y Fusion (10.x anteriores a la 10.1.1 y 8.x) contiene una vulnerabilidad de denegación de servicio (DoS) que se puede desencadenar al abrir un númer... • http://www.securityfocus.com/bid/103431 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 7.0EPSS: 0%CPEs: 5EXPL: 0CVE-2017-4950 – VMware Security Advisory 2018-0005
https://notcve.org/view.php?id=CVE-2017-4950
11 Jan 2018 — VMware Workstation and Fusion contain an integer overflow vulnerability in VMware NAT service when IPv6 mode is enabled. This issue may lead to an out-of-bound read which can then be used to execute code on the host in conjunction with other issues. Note: IPv6 mode for VMNAT is not enabled by default. VMware Workstation y Fusion contienen una vulnerabilidad de desbordamiento de enteros en el servicio VMware NAT cuando el modo IPv6 está habilitado. Este problema podría conducir a una lectura fuera de límites... • http://www.securityfocus.com/bid/102490 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.0EPSS: 0%CPEs: 5EXPL: 0CVE-2017-4949 – VMware Security Advisory 2018-0005
https://notcve.org/view.php?id=CVE-2017-4949
11 Jan 2018 — VMware Workstation and Fusion contain a use-after-free vulnerability in VMware NAT service when IPv6 mode is enabled. This issue may allow a guest to execute code on the host. Note: IPv6 mode for VMNAT is not enabled by default. VMware Workstation y Fusion contienen una vulnerabilidad de uso de memoria previamente liberada en el servicio VMware NAT cuando el modo IPv6 está habilitado. Este problema puede permitir que un invitado ejecute código en el host. • http://www.securityfocus.com/bid/102489 • CWE-416: Use After Free •
CVSS: 5.5EPSS: 0%CPEs: 37EXPL: 0CVE-2017-4945 – VMware Security Advisory 2018-0003
https://notcve.org/view.php?id=CVE-2017-4945
05 Jan 2018 — VMware Workstation (14.x and 12.x) and Fusion (10.x and 8.x) contain a guest access control vulnerability. This issue may allow program execution via Unity on locked Windows VMs. VMware Tools must be updated to 10.2.0 for each VM to resolve CVE-2017-4945. VMware Tools 10.2.0 is consumed by Workstation 14.1.0 and Fusion 10.1.0 by default. VMware Workstation (14.x y 12.x) y Fusion (10.x y 8.x) contienen una vulnerabilidad de control de acceso invitado. • http://www.securityfocus.com/bid/102441 •
CVSS: 7.8EPSS: 0%CPEs: 29EXPL: 0CVE-2015-2336 – VMware Security Advisory 2015-0004
https://notcve.org/view.php?id=CVE-2015-2336
09 Jun 2015 — TPView.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode before 5.4.2 on Windows does not properly allocate memory, which allows guest OS users to execute arbitrary code on the host OS via unspecified vectors, a different vulnerability than CVE-2012-0897. TPView.dll en VMware Workstation 10.x anterior a 10.0.6 y 11.x anterior a 11.1.1, VMware Player 6.x anterior a 6... • http://www.securityfocus.com/bid/75095 • CWE-399: Resource Management Errors •
CVSS: 8.8EPSS: 0%CPEs: 29EXPL: 0CVE-2015-2337 – VMware Security Advisory 2015-0004
https://notcve.org/view.php?id=CVE-2015-2337
09 Jun 2015 — TPInt.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode before 5.4.2 on Windows does not properly allocate memory, which allows guest OS users to execute arbitrary code on the host OS via unspecified vectors. TPInt.dll en VMware Workstation 10.x anterior a 10.0.6 y 11.x anterior a 11.1.1, VMware Player 6.x anterior a 6.0.6 y 7.x anterior a 7.1.1, y VMware Horizon Cl... • http://www.securityfocus.com/bid/75095 • CWE-399: Resource Management Errors •
CVSS: 6.1EPSS: 0%CPEs: 29EXPL: 0CVE-2015-2338 – VMware Security Advisory 2015-0004
https://notcve.org/view.php?id=CVE-2015-2338
09 Jun 2015 — TPview.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode before 5.4.2 on Windows does not properly allocate memory, which allows guest OS users to cause a host OS denial of service via unspecified vectors, a different vulnerability than CVE-2015-2339. TPview.dll en VMware Workstation 10.x anterior a 10.0.6 y 11.x anterior a 11.1.1, VMware Player 6.x anterior a 6.0.6... • http://www.securityfocus.com/bid/75092 • CWE-399: Resource Management Errors •
CVSS: 6.1EPSS: 0%CPEs: 29EXPL: 0CVE-2015-2339 – VMware Security Advisory 2015-0004
https://notcve.org/view.php?id=CVE-2015-2339
09 Jun 2015 — TPview.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode before 5.4.2 on Windows does not properly allocate memory, which allows guest OS users to cause a host OS denial of service via unspecified vectors, a different vulnerability than CVE-2015-2338. TPview.dll en VMware Workstation 10.x anterior a 10.0.6 y 11.x anterior a 11.1.1, VMware Player 6.x anterior a 6.0.6... • http://www.securityfocus.com/bid/75092 • CWE-399: Resource Management Errors •
CVSS: 6.5EPSS: 0%CPEs: 29EXPL: 0CVE-2015-2340 – VMware Security Advisory 2015-0004
https://notcve.org/view.php?id=CVE-2015-2340
09 Jun 2015 — TPInt.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode before 5.4.2 on Windows does not properly allocate memory, which allows guest OS users to cause a host OS denial of service via unspecified vectors. TPInt.dll en VMware Workstation 10.x anterior a 10.0.6 y 11.x anterior a 11.1.1, VMware Player 6.x anterior a 6.0.6 y 7.x anterior a 7.1.1, y VMware Horizon Client... • http://www.securityfocus.com/bid/75092 • CWE-399: Resource Management Errors •