KLA11173
OSI vulnerability in VMware Products
Обновлено: 10/01/2018
CVSS
8.8
Дата обнаружения
09/01/2018
Уровень угрозы
Critical
Описание

A bounds check bypass and branch target injection vulnerability was found in VMware ESXi, VMWare Workstation and VMware Fusion. By exploiting this vulnerability malicious users can obtain sensitive information.

Пораженные продукты

VMware Workstation 12.x earlier than 12.5.8
VMware Workstation 14.x earlier than 14.1.1
VMware Fusion earlier than 8.5.10
ESXi 6.5 earlier than ESXi550-201801401-BG
ESXi 6.0 earlier than ESXi600-201711402-SG
ESXi 5.5 earlier than ESXi550-201801402-BG
 

Решение

Update to latest version
Download VMware Fusion
Download VMware Workstation Pro

Первичный источник обнаружения
VMSA-2018-0004
VMSA-2018-0002
Оказываемое влияние
?
OSI 
[?]
Связанные продукты
VMware Workstation
VMware Fusion
CVE-IDS

CVE-2017-5753
CVE-2017-5715