Vulnerability Details CVE-2017-4900
VMware Workstation Pro/Player 12.x before 12.5.3 contains a NULL pointer dereference vulnerability that exists in the SVGA driver. Successful exploitation of this issue may allow attackers with normal user privileges to crash their VMs.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 13.9%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 2.1
References
Products affected by CVE-2017-4900
-
cpe:2.3:a:vmware:workstation_player:12.0.0
-
cpe:2.3:a:vmware:workstation_player:12.0.1
-
cpe:2.3:a:vmware:workstation_player:12.1.0
-
cpe:2.3:a:vmware:workstation_player:12.5.0
-
cpe:2.3:a:vmware:workstation_player:12.5.1
-
cpe:2.3:a:vmware:workstation_player:12.5.2
-
cpe:2.3:a:vmware:workstation_pro:12.0.0
-
cpe:2.3:a:vmware:workstation_pro:12.0.1
-
cpe:2.3:a:vmware:workstation_pro:12.1.0
-
cpe:2.3:a:vmware:workstation_pro:12.5.0
-
cpe:2.3:a:vmware:workstation_pro:12.5.1
-
cpe:2.3:a:vmware:workstation_pro:12.5.2