CVE-2018-6977 vulnerability in VMware Products
Published on October 9, 2018

VMware ESXi (6.7, 6.5, 6.0), Workstation (15.x and 14.x) and Fusion (11.x and 10.x) contain a denial-of-service vulnerability due to an infinite loop in a 3D-rendering shader. Successfully exploiting this issue may allow an attacker with normal user privileges in the guest to make the VM unresponsive, and in some cases, possibly result other VMs on the host or the host itself becoming unresponsive.

NVD

Products Associated with CVE-2018-6977

Want to know whenever a new CVE is published for VMware products? stack.watch will email you.

VMware Fusion

VMware Workstation

VMware ESXi

Affected Versions

VMware ESXi:

Version 6.7, 6.5, 6.0 is affected.

VMware Workstation:

Version 15.x and 14.x is affected.

VMware Fusion:

Version 11.x and 10.x is affected.

Exploit Probability

EPSS

0.07%

Percentile

20.10%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-6977 vulnerability in VMware ProductsPublished on October 9, 2018

Products Associated with CVE-2018-6977

Affected Versions

Exploit Probability

CVE-2018-6977 vulnerability in VMware Products
Published on October 9, 2018