Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2017-4941

VMware ESXi (6.0 before ESXi600-201711101-SG, 5.5 ESXi550-201709101-SG), Workstation (12.x before 12.5.8), and Fusion (8.x before 8.5.9) contain a vulnerability that could allow an authenticated VNC session to cause a stack overflow via a specific set of VNC packets. Successful exploitation of this issue could result in remote code execution in a virtual machine via the authenticated VNC session. Note: In order for exploitation to be possible in ESXi, VNC must be manually enabled in a virtual machine's .vmx configuration file. In addition, ESXi must be configured to allow VNC traffic through the built-in firewall.

  • Published: Dec 20, 2017
  • Updated: Apr 13, 2023
  • CVE: CVE-2017-4941
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 8.8
  • AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

  • Severity: Medium
  • Score: 6
  • AV:N/AC:M/Au:S/C:P/I:P/A:P

CWEs:

Software From Fixed in
vmware / fusion 8.0.0 8.5.9
vmware / workstation 12.0.0 12.5.8
vmware / esxi 5.5 5.5.x
vmware / esxi 5.5-550-20170904001 5.5-550-20170904001.x
vmware / esxi 5.5-550-20170901001s 5.5-550-20170901001s.x
vmware / esxi 6.0 6.0.x
vmware / esxi 6.0-600-201504401 6.0-600-201504401.x
vmware / esxi 6.0-600-201505401 6.0-600-201505401.x
vmware / esxi 6.0-600-201507101 6.0-600-201507101.x
vmware / esxi 6.0-600-201507102 6.0-600-201507102.x
vmware / esxi 6.0-600-201507403 6.0-600-201507403.x
vmware / esxi 6.0-600-201507404 6.0-600-201507404.x
vmware / esxi 6.0-600-201507405 6.0-600-201507405.x
vmware / esxi 6.0-600-201507402 6.0-600-201507402.x
vmware / esxi 6.0-600-201507407 6.0-600-201507407.x
vmware / esxi 6.0-600-201507406 6.0-600-201507406.x
vmware / esxi 6.0-600-201507401 6.0-600-201507401.x
vmware / esxi 6.0-600-201509101 6.0-600-201509101.x
vmware / esxi 6.0-600-201509102 6.0-600-201509102.x
vmware / esxi 6.0-600-201509205 6.0-600-201509205.x
vmware / esxi 6.0-600-201509209 6.0-600-201509209.x
vmware / esxi 6.0-600-201509202 6.0-600-201509202.x
vmware / esxi 6.0-600-201509206 6.0-600-201509206.x
vmware / esxi 6.0-600-201509210 6.0-600-201509210.x
vmware / esxi 6.0-600-201509204 6.0-600-201509204.x
vmware / esxi 6.0-600-201509203 6.0-600-201509203.x
vmware / esxi 6.0-600-201509207 6.0-600-201509207.x
vmware / esxi 6.0-600-201509208 6.0-600-201509208.x
vmware / esxi 6.0-600-201509201 6.0-600-201509201.x
vmware / esxi 6.0-600-201510401 6.0-600-201510401.x
vmware / esxi 6.0-600-201511401 6.0-600-201511401.x
vmware / esxi 6.0-600-201601102 6.0-600-201601102.x
vmware / esxi 6.0-600-201601101 6.0-600-201601101.x
vmware / esxi 6.0-600-201601403 6.0-600-201601403.x
vmware / esxi 6.0-600-201601402 6.0-600-201601402.x
vmware / esxi 6.0-600-201601404 6.0-600-201601404.x
vmware / esxi 6.0-600-201601405 6.0-600-201601405.x
vmware / esxi 6.0-600-201601401 6.0-600-201601401.x
vmware / esxi 6.0-600-201602401 6.0-600-201602401.x
vmware / esxi 6.0-600-201603102 6.0-600-201603102.x
vmware / esxi 6.0-600-201603101 6.0-600-201603101.x
vmware / esxi 6.0-600-201603202 6.0-600-201603202.x
vmware / esxi 6.0-600-201603201 6.0-600-201603201.x
vmware / esxi 6.0-600-201603204 6.0-600-201603204.x
vmware / esxi 6.0-600-201603208 6.0-600-201603208.x
vmware / esxi 6.0-600-201603206 6.0-600-201603206.x
vmware / esxi 6.0-600-201603207 6.0-600-201603207.x
vmware / esxi 6.0-600-201603205 6.0-600-201603205.x
vmware / esxi 6.0-600-201603203 6.0-600-201603203.x
vmware / esxi 6.0-600-201605401 6.0-600-201605401.x
vmware / esxi 6.0-600-201608101 6.0-600-201608101.x
vmware / esxi 6.0-600-201608401 6.0-600-201608401.x
vmware / esxi 6.0-600-201608403 6.0-600-201608403.x
vmware / esxi 6.0-600-201608402 6.0-600-201608402.x
vmware / esxi 6.0-600-201608405 6.0-600-201608405.x
vmware / esxi 6.0-600-201608404 6.0-600-201608404.x
vmware / esxi 6.0-600-201610410 6.0-600-201610410.x
vmware / esxi 6.0-600-201611402 6.0-600-201611402.x
vmware / esxi 6.0-600-201611401 6.0-600-201611401.x
vmware / esxi 6.0-600-201611403 6.0-600-201611403.x
vmware / esxi 6.0-600-201702101 6.0-600-201702101.x
vmware / esxi 6.0-600-201702102 6.0-600-201702102.x
vmware / esxi 6.0-600-201702201 6.0-600-201702201.x
vmware / esxi 6.0-600-201702209 6.0-600-201702209.x
vmware / esxi 6.0-600-201702202 6.0-600-201702202.x
vmware / esxi 6.0-600-201702211 6.0-600-201702211.x
vmware / esxi 6.0-600-201702204 6.0-600-201702204.x
vmware / esxi 6.0-600-201702203 6.0-600-201702203.x
vmware / esxi 6.0-600-201702207 6.0-600-201702207.x
vmware / esxi 6.0-600-201702206 6.0-600-201702206.x
vmware / esxi 6.0-600-201702205 6.0-600-201702205.x
vmware / esxi 6.0-600-201702212 6.0-600-201702212.x
vmware / esxi 6.0-600-201702208 6.0-600-201702208.x
vmware / esxi 6.0-600-201702210 6.0-600-201702210.x
vmware / esxi 6.0-600-201703401 6.0-600-201703401.x
vmware / esxi 6.0-600-201706101 6.0-600-201706101.x
vmware / esxi 6.0-600-201706102 6.0-600-201706102.x
vmware / esxi 6.0-600-201706103 6.0-600-201706103.x
vmware / esxi 6.0-600-201706402 6.0-600-201706402.x
vmware / esxi 6.0-600-201706401 6.0-600-201706401.x
vmware / esxi 6.0-600-201706403 6.0-600-201706403.x
vmware / esxi 6.0-600-201710301 6.0-600-201710301.x
vmware / esxi 6.0-1 6.0-1.x
vmware / esxi 6.0-1a 6.0-1a.x
vmware / esxi 6.0-1b 6.0-1b.x
vmware / esxi 6.0-2 6.0-2.x
vmware / esxi 6.0-3 6.0-3.x
vmware / esxi 6.0-3a 6.0-3a.x