CVE-2018-6983
published 2018-11-27CVE-2018-6983: VMware Workstation (15.x before 15.0.2 and 14.x before 14.1.5) and Fusion (11.x before 11.0.2 and 10.x before 10.1.5) contain an integer overflow vulnerability…
high8.8CVSS 3.0
AVLACLPRLUINSCCHIHAH
VMware Workstation (15.x before 15.0.2 and 14.x before 14.1.5) and Fusion (11.x before 11.0.2 and 10.x before 10.1.5) contain an integer overflow vulnerability in the virtual network devices. This issue may allow a guest to execute code on the host.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| vmware | fusion | >= 10.0.0 < 10.1.5 | 10.1.5 |
| vmware | fusion | >= 11.0.0 < 11.0.2 | 11.0.2 |
| vmware | fusion_pro | — | — |
| vmware | vmware_fusion | — | — |
| vmware | vmware_workstation | — | — |
| vmware | vmware_workstation_and_fusion | — | — |
| vmware | workstation | >= 14.0.0 < 14.1.5 | 14.1.5 |
| vmware | workstation | >= 15.0.0 < 15.0.2 | 15.0.2 |
| vmware | workstation_player | — | — |
| vmware | workstation_pro | — | — |