Multiple vulnerabilities in VMware products

Description

Multiple serious vulnerabilities were found in VWware Workstation and Fusion. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code.

Below is a complete list of vulnerabilities:

1. Uninitialized stack memory vulnerability can be exploited to obtain sensitive information;
2. Uninitialized stack memory vulnerability can be exploited remotely to execute arbitrary code.

Original advisories

• VMware Security Advisories VMSA-2018-0027

Exploitation

Public exploits exist for this vulnerability.

Related products

• VMware-Workstation
• VMware-Fusion

CVE list

• CVE-2018-6982
  warning
• CVE-2018-6981
  high

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com