KLA11346
Multiple vulnerabilities in VMware products
Обновлено: 26/06/2019
Дата обнаружения
08/11/2018
Уровень угрозы
Critical
Описание

Multiple serious vulnerabilities were found in VWware Workstation and Fusion. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. Uninitialized stack memory vulnerability can be exploited to obtain sensitive information;
  2. Uninitialized stack memory vulnerability can be exploited remotely to execute arbitrary code.
Пораженные продукты

VMware Workstation 14.x earlier than 14.1.4
VMware Fusion 10.x earlier than 10.1.4
VMware Workstation 15.x earlier than 15.0.1
VMware Fusion 11.x earlier than 11.0.1

Решение

Update to the latest version
Download Workstation

Первичный источник обнаружения
VMware Security Advisories VMSA-2018-0027
Оказываемое влияние
?
ACE 
[?]

OSI 
[?]
Связанные продукты
VMware Workstation
VMware Fusion
CVE-IDS
CVE-2018-69827.5Critical
CVE-2018-69817.5Critical