CVE-2017-4933

HIGH

VMware ESXi <6.5-12.x <12.5.8-8.x <8.5.9 - RCE

Title source: llm

Description

VMware ESXi (6.5 before ESXi650-201710401-BG), Workstation (12.x before 12.5.8), and Fusion (8.x before 8.5.9) contain a vulnerability that could allow an authenticated VNC session to cause a heap overflow via a specific set of VNC packets resulting in heap corruption. Successful exploitation of this issue could result in remote code execution in a virtual machine via the authenticated VNC session. Note: In order for exploitation to be possible in ESXi, VNC must be manually enabled in a virtual machine's .vmx configuration file. In addition, ESXi must be configured to allow VNC traffic through the built-in firewall.

References (3)

Core 3

Core References

Issue Tracking, Vendor Advisory x_refsource_confirm

https://www.vmware.com/security/advisories/VMSA-2017-0021.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1040025

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1040024

Scores

CVSS v3 8.8

EPSS 0.0708

EPSS Percentile 91.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-787

Status published

Products (8)

vmware/esxi 6.5 (30 CPE variants)

VMware/ESXi 6.5 before ESXi650-201710401-BG

vmware/fusion 8.0.0 - 8.5.9

VMware/Fusion 8.x before 8.5.9

VMware/Workstation 12.x before 12.5.8

vmware/workstation_pro 14.0

vmware/workstation_pro 14.1.0

vmware/workstation_pro 12.0.0 - 12.5.8

Published Dec 20, 2017

Tracked Since Feb 18, 2026