CVE-2018-6972

MITRE NVD CVE.ORG JSON API Print: PDF PDF

Summary

CVECVE-2018-6972
StatePUBLIC
Assigner[email protected]
Source PriorityCVE Program / NVD first with legacy fallback
Published2018-07-25 13:29:00 UTC
Updated2022-06-02 19:20:00 UTC
DescriptionVMware ESXi (6.7 before ESXi670-201806401-BG, 6.5 before ESXi650-201806401-BG, 6.0 before ESXi600-201806401-BG and 5.5 before ESXi550-201806401-BG), Workstation (14.x before 14.1.2), and Fusion (10.x before 10.1.2) contain a denial-of-service vulnerability due to NULL pointer dereference issue in RPC handler. Successful exploitation of this issue may allow attackers with normal user privileges to crash their VMs.

Risk And Classification

Problem Types: CWE-476

NVD Known Affected Configurations (CPE 2.3)

TypeVendorProductVersionUpdateEditionLanguage
Operating System Apple Mac Os X - All All All
Operating System Vmware Esxi All All All All
Operating System Vmware Esxi 5.5 - All All
Operating System Vmware Esxi 5.5 1 All All
Operating System Vmware Esxi 5.5 2 All All
Operating System Vmware Esxi 5.5 3a All All
Operating System Vmware Esxi 5.5 3b All All
Operating System Vmware Esxi 5.5 550-20170901001s All All
Operating System Vmware Esxi 5.5 550-20170904001 All All
Operating System Vmware Esxi 6.0 - All All
Operating System Vmware Esxi 6.0 1 All All
Operating System Vmware Esxi 6.0 1a All All
Operating System Vmware Esxi 6.0 1b All All
Operating System Vmware Esxi 6.0 2 All All
Operating System Vmware Esxi 6.0 3 All All
Operating System Vmware Esxi 6.0 3a All All
Operating System Vmware Esxi 6.0 600-201504401 All All
Operating System Vmware Esxi 6.0 600-201505401 All All
Operating System Vmware Esxi 6.0 600-201507101 All All
Operating System Vmware Esxi 6.0 600-201507102 All All
Operating System Vmware Esxi 6.0 600-201507401 All All
Operating System Vmware Esxi 6.0 600-201507402 All All
Operating System Vmware Esxi 6.0 600-201507403 All All
Operating System Vmware Esxi 6.0 600-201507404 All All
Operating System Vmware Esxi 6.0 600-201507405 All All
Operating System Vmware Esxi 6.0 600-201507406 All All
Operating System Vmware Esxi 6.0 600-201507407 All All
Operating System Vmware Esxi 6.0 600-201509101 All All
Operating System Vmware Esxi 6.0 600-201509102 All All
Operating System Vmware Esxi 6.0 600-201509201 All All
Operating System Vmware Esxi 6.0 600-201509202 All All
Operating System Vmware Esxi 6.0 600-201509203 All All
Operating System Vmware Esxi 6.0 600-201509204 All All
Operating System Vmware Esxi 6.0 600-201509205 All All
Operating System Vmware Esxi 6.0 600-201509206 All All
Operating System Vmware Esxi 6.0 600-201509207 All All
Operating System Vmware Esxi 6.0 600-201509208 All All
Operating System Vmware Esxi 6.0 600-201509209 All All
Operating System Vmware Esxi 6.0 600-201509210 All All
Operating System Vmware Esxi 6.0 600-201510401 All All
Operating System Vmware Esxi 6.0 600-201511401 All All
Operating System Vmware Esxi 6.0 600-201601101 All All
Operating System Vmware Esxi 6.0 600-201601102 All All
Operating System Vmware Esxi 6.0 600-201601401 All All
Operating System Vmware Esxi 6.0 600-201601402 All All
Operating System Vmware Esxi 6.0 600-201601403 All All
Operating System Vmware Esxi 6.0 600-201601404 All All
Operating System Vmware Esxi 6.0 600-201601405 All All
Operating System Vmware Esxi 6.0 600-201602401 All All
Operating System Vmware Esxi 6.0 600-201603101 All All
Operating System Vmware Esxi 6.0 600-201603102 All All
Operating System Vmware Esxi 6.0 600-201603201 All All
Operating System Vmware Esxi 6.0 600-201603202 All All
Operating System Vmware Esxi 6.0 600-201603203 All All
Operating System Vmware Esxi 6.0 600-201603204 All All
Operating System Vmware Esxi 6.0 600-201603205 All All
Operating System Vmware Esxi 6.0 600-201603206 All All
Operating System Vmware Esxi 6.0 600-201603207 All All
Operating System Vmware Esxi 6.0 600-201603208 All All
Operating System Vmware Esxi 6.0 600-201605401 All All
Operating System Vmware Esxi 6.0 600-201608101 All All
Operating System Vmware Esxi 6.0 600-201608401 All All
Operating System Vmware Esxi 6.0 600-201608402 All All
Operating System Vmware Esxi 6.0 600-201608403 All All
Operating System Vmware Esxi 6.0 600-201608404 All All
Operating System Vmware Esxi 6.0 600-201608405 All All
Operating System Vmware Esxi 6.0 600-201610410 All All
Operating System Vmware Esxi 6.0 600-201611401 All All
Operating System Vmware Esxi 6.0 600-201611402 All All
Operating System Vmware Esxi 6.0 600-201611403 All All
Operating System Vmware Esxi 6.0 600-201702101 All All
Operating System Vmware Esxi 6.0 600-201702102 All All
Operating System Vmware Esxi 6.0 600-201702201 All All
Operating System Vmware Esxi 6.0 600-201702202 All All
Operating System Vmware Esxi 6.0 600-201702203 All All
Operating System Vmware Esxi 6.0 600-201702204 All All
Operating System Vmware Esxi 6.0 600-201702205 All All
Operating System Vmware Esxi 6.0 600-201702206 All All
Operating System Vmware Esxi 6.0 600-201702207 All All
Operating System Vmware Esxi 6.0 600-201702208 All All
Operating System Vmware Esxi 6.0 600-201702209 All All
Operating System Vmware Esxi 6.0 600-201702210 All All
Operating System Vmware Esxi 6.0 600-201702211 All All
Operating System Vmware Esxi 6.0 600-201702212 All All
Operating System Vmware Esxi 6.0 600-201703401 All All
Operating System Vmware Esxi 6.0 600-201706101 All All
Operating System Vmware Esxi 6.0 600-201706102 All All
Operating System Vmware Esxi 6.0 600-201706103 All All
Operating System Vmware Esxi 6.5 - All All
Operating System Vmware Esxi 6.5 2 All All
Operating System Vmware Esxi 6.5 650-201701001 All All
Operating System Vmware Esxi 6.5 650-201703001 All All
Operating System Vmware Esxi 6.5 650-201703002 All All
Operating System Vmware Esxi 6.5 650-201704001 All All
Operating System Vmware Esxi 6.5 650-201707101 All All
Operating System Vmware Esxi 6.5 650-201707102 All All
Operating System Vmware Esxi 6.5 650-201707103 All All
Operating System Vmware Esxi 6.5 650-201707201 All All
Operating System Vmware Esxi 6.5 650-201707202 All All
Operating System Vmware Esxi 6.5 650-201707203 All All
Operating System Vmware Esxi 6.5 650-201707204 All All
Operating System Vmware Esxi 6.5 650-201707205 All All
Operating System Vmware Esxi 6.5 650-201707206 All All
Operating System Vmware Esxi 6.5 650-201707207 All All
Operating System Vmware Esxi 6.5 650-201707208 All All
Operating System Vmware Esxi 6.5 650-201707209 All All
Operating System Vmware Esxi 6.5 650-201707210 All All
Operating System Vmware Esxi 6.5 650-201707211 All All
Operating System Vmware Esxi 6.5 650-201707212 All All
Operating System Vmware Esxi 6.5 650-201707213 All All
Operating System Vmware Esxi 6.5 650-201707214 All All
Operating System Vmware Esxi 6.5 650-201707215 All All
Operating System Vmware Esxi 6.5 650-201707216 All All
Operating System Vmware Esxi 6.5 650-201707217 All All
Operating System Vmware Esxi 6.5 650-201707218 All All
Operating System Vmware Esxi 6.5 650-201707219 All All
Operating System Vmware Esxi 6.5 650-201707220 All All
Operating System Vmware Esxi 6.5 650-201707221 All All
Operating System Vmware Esxi 6.5 650-201710001 All All
Operating System Vmware Esxi 6.5 650-201712001 All All
Operating System Vmware Esxi 6.5 650-201803001 All All
Operating System Vmware Esxi 6.5 650-201806001 All All
Operating System Vmware Esxi 6.7 - All All
Operating System Vmware Esxi 6.7 670-201806001 All All
Operating System Vmware Esxi All All All All
Application Vmware Fusion All All All All
Application Vmware Fusion All All All All
Application Vmware Fusion All All All All
Application Vmware Fusion All All All All
Application Vmware Workstation All All All All
Application Vmware Workstation All All All All

References

ReferenceSourceLinkTags
VMSA-2018-0018 CONFIRM www.vmware.com Patch, Vendor Advisory
Multiple VMware Products CVE-2018-6972 Denial of Service Vulnerability BID www.securityfocus.com Third Party Advisory, VDB Entry
VMware Workstation/Fusion Null Pointer Dereference in RPC Handler Lets Local Users on a Guest System Cause Denial of Service Conditions on Their Guest System - SecurityTracker SECTRACK www.securitytracker.com Third Party Advisory, VDB Entry
VMware ESXi Null Pointer Dereference in RPC Handler Lets Local Users on a Guest System Cause Denial of Service Conditions on Their Guest System - SecurityTracker SECTRACK www.securitytracker.com Third Party Advisory, VDB Entry
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report