KLA11296
DoS vulnerability in VMware products

Updated: 06/03/2020
Detect date
?
07/19/2018
Severity
?
Warning
Description

Multiple vulnerabilities were found in VMware products. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges.

Below is a complete list of vulnerabilities:

  1. A NULL pointer dereference vulnerability was found in VMware Workstation and Fusion. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited locally via RPC handler;
  2. Local information disclosure vulnerability can be exploited to gain privileges;
Affected products
VMware Workstation 14.x earlier than 14.1.2
VMware Fusion 10.x earlier than 10.1.2
Solution

Update to the latest version
Download VMware Fusion
Download Workstation

Original advisories

VMSA-2018-0018

Impacts
?
DoS 
[?]

PE 
[?]
Related products
VMware Workstation
VMware Fusion
CVE-IDS
?
CVE-2018-69724.0Warning
CVE-2018-69712.1Warning
Find out the statistics of the vulnerabilities spreading in your region