CVE-2018-6957

Summary

VMware Workstation (14.x before 14.1.1, 12.x) and Fusion (10.x before 10.1.1 and 8.x) contain a denial-of-service vulnerability which can be triggered by opening a large number of VNC sessions. Note: In order for exploitation to be possible on Workstation and Fusion, VNC must be manually enabled.

Affected Software

VendorProductVersion RangeStatus
VMwareWorkstation14.x before 14.1.1affected
VMwareWorkstation12.xaffected
VMwareFusion10.x before 10.1.1affected
VMwareFusion8.xaffected

Weaknesses

  • Denial-of-service vulnerability

ADP Enrichment

CVE Program Container

Additional References

References