vulnerability

VMware vCenter Server: CVE-2017-4921 (VMSA-2017-0013)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:L/Au:S/C:P/I:P/A:P)	Aug 1, 2017	Jul 25, 2022	Jan 20, 2026

Severity

CVSS

(AV:N/AC:L/Au:S/C:P/I:P/A:P)

Published

Aug 1, 2017

Added

Jul 25, 2022

Modified

Jan 20, 2026

Description

VMware vCenter Server (6.5 prior to 6.5 U1) contains an insecure library loading issue that occurs due to the use of LD_LIBRARY_PATH variable in an unsafe manner. Successful exploitation of this issue may allow unprivileged host users to load a shared library that may lead to privilege escalation.

Solution

vmware-vcenter-server-upgrade-latest

References

CVE-2017-4921
https://attackerkb.com/topics/CVE-2017-4921
URL-http://www.securityfocus.com/bid/100006
URL-http://www.securitytracker.com/id/1039013
URL-https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/23509

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today