vulnerability

VMware Fusion: Vulnerability (VMSA-2018-0013) (CVE-2018-6963)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
2	(AV:L/AC:L/Au:N/C:N/I:N/A:P)	May 22, 2018	May 30, 2018	Mar 27, 2026

Severity

CVSS

(AV:L/AC:L/Au:N/C:N/I:N/A:P)

Published

May 22, 2018

Added

May 30, 2018

Modified

Mar 27, 2026

Description

VMware Workstation (14.x before 14.1.2) and Fusion (10.x before 10.1.2) contain multiple denial-of-service vulnerabilities that occur due to NULL pointer dereference issues in the RPC handler. Successful exploitation of these issues may allow an attacker with limited privileges on the guest machine trigger a denial-of-Service of their guest machine.

Solution

vmware-fusion-upgrade-10_1_2

References

CVE-2018-6963
https://attackerkb.com/topics/CVE-2018-6963
CWE-476
EUVD-EUVD-2018-18707
http://www.vmware.com/security/advisories/VMSA-2018-0013.html
https://euvd.enisa.europa.eu/vulnerability/EUVD-2018-18707

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report