Page Content
VMware has released security updates to address a multiple vulnerabilities in Horizon 6, 7, Horizon Client for Windows, VMware Horizon View Agent, VMware ESXi, Workstation, Fusion, and VMware Tools. An attacker could exploit some of this vulnerabilities to obtain sensitive information or cause denial-of-service conditions.
Affected products and versions:
Product | Version | Running on | Severity | Replace with/ | Mitigation Workaround |
Apply patch |
Workstation | 14.x | Any | Moderate | 14.1.2 | None |
Fusion | 10.x | OSX | Moderate | 10.1.2 | None |
View Agent | 7.x.x | Windows | Important | 7.5.1 | KB56631 |
ESXi | 6.7 | Any | Moderate | ESXi670-201806401-BG | None |
ESXi | 6.5 | Any | Moderate | ESXi670-201806401-BG | None |
ESXi | 6.0 | Any | Moderate | ESXi670-201806401-BG | None |
ESXi | 5.5 | Any | Moderate | ESXi670-201806401-BG | None |
Horizon 7 | 7.x.x | Windows | Important | 7.5.1 | None |
Horizon 6 | 6.x.x | Windows | Important | 6.2.7 | None |
Horizon Client for Windows | 4.x.x and prior | Windows | Important | 4.8.1 | None |
VMware Tools | 10.x and prior | Windows | Important | 10.3.0 | None |
CERT Bulgaria recommends users and administrators to review the VMware Security Advisory VMSA-2018-0019, VMSA-2018-0018, and VMSA-2018-0017.2 and apply the necessary updates.
https://www.vmware.com/security/advisories/VMSA-2018-0019.html
https://www.vmware.com/security/advisories/VMSA-2018-0018.html
https://www.vmware.com/security/advisories/VMSA-2018-0017.html