CVE-2017-4927

HIGH

VMware vCenter Server <6.5 U1, <6.0 U3c - DoS

Title source: llm

Description

VMware vCenter Server (6.5 prior to 6.5 U1 and 6.0 prior to 6.0 U3c) does not correctly handle specially crafted LDAP network packets which may allow for remote denial of service.

References (3)

[Vendor Advisory] https://www.vmware.com/security/advisories/VMSA-2017-0017.html

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1039759

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/101786

Scores

CVSS v3 7.5

EPSS 0.0142

EPSS Percentile 80.7%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-90

Status published

Products (3)

VMware/vCenter Server 6.0 prior to 6.0 U3c

VMware/vCenter Server 6.5 prior to 6.5 U1

vmware/vcenter_server 6.0 - 6.0_u3c

Published Nov 17, 2017

Tracked Since Feb 18, 2026