CVE-2020-3969 in ESXi情報

要約

〜によって MITRE

VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x before 15.5.5), and Fusion (11.x before 11.5.5) contain an off-by-one heap-overflow vulnerability in the SVGA device. A malicious actor with local access to a virtual machine with 3D graphics enabled may be able to exploit this vulnerability to execute code on the hypervisor from a virtual machine. Additional conditions beyond the attacker's control must be present for exploitation to be possible.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

予約する

2019年12月30日

モデレーション

承諾済み

エントリ

VDB-157245

EPSS

0.00498

アクティビティ

非常低い

ソース

Do you need the next level of professionalism?

Upgrade your account now!