CVE-2018-6969

EUVD-2018-18713
VMware Tools (10.x and prior before 10.3.0) contains an out-of-bounds read vulnerability in HGFS. Successful exploitation of this issue may lead to information disclosure or may allow attackers to escalate their privileges on the guest VMs. In order to be able to exploit this issue, file sharing must be enabled.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7 HIGH
LOCAL
HIGH
LOW
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 21%
Affected Products (NVD)
VendorProductVersion
vmwaretools
𝑥
< 10.3.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/104737
http://www.securitytracker.com/id/1041291
https://www.vmware.com/security/advisories/VMSA-2018-0017.html
http://www.securityfocus.com/bid/104737
http://www.securitytracker.com/id/1041291
https://www.vmware.com/security/advisories/VMSA-2018-0017.html