CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-4916

VMware Workstation Pro/Player contains a NULL pointer dereference vulnerability that exists in the vstor2 driver. Successful exploitation of this issue may allow host users with normal user privileges to trigger a denial-of-service in a Windows host machine.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.05

EPSS Ranking 91.1%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 6.8

References

http://www.securityfocus.com/bid/98560
http://www.securitytracker.com/id/1038526
https://www.exploit-db.com/exploits/42140/
https://www.vmware.com/security/advisories/VMSA-2017-0009.html
http://www.securityfocus.com/bid/98560
http://www.securitytracker.com/id/1038526
https://www.exploit-db.com/exploits/42140/
https://www.vmware.com/security/advisories/VMSA-2017-0009.html

Products affected by CVE-2017-4916

Vmware » Workstation Player » Version: 12.0.0

cpe:2.3:a:vmware:workstation_player:12.0.0
Vmware » Workstation Pro » Version: 12.0.0

cpe:2.3:a:vmware:workstation_pro:12.0.0
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-4916

Products

Pricing

Contact Us