Headline
CVE-2018-6974: VMSA-2018-0026
VMware ESXi (6.7 before ESXi670-201810101-SG, 6.5 before ESXi650-201808401-BG, and 6.0 before ESXi600-201808401-BG), Workstation (14.x before 14.1.3) and Fusion (10.x before 10.1.3) contain an out-of-bounds read vulnerability in SVGA device. This issue may allow a guest to execute code on the host.
VMware Product ESXi
Product Version 6.7
Running on ESXi
Severity Critical
Replace with/ Apply Patch ESXi670-201810101-SG
Mitigation/ Workaround None
VMware Product ESXi
Product Version 6.5
Running on ESXi
Severity Critical
Replace with/ Apply Patch ESXi650-201808401-BG
Mitigation/ Workaround None
VMware Product ESXi
Product Version 6.0
Running on ESXi
Severity Critical
Replace with/ Apply Patch ESXi600-201808401-BG
Mitigation/ Workaround None
VMware Product ESXi
Product Version 5.5
Running on ESXi
Severity N/A
Replace with/ Apply Patch not affected
Mitigation/ Workaround N/A
VMware Product Workstation
Product Version 15.x
Running on Any
Severity N/A
Replace with/ Apply Patch not affected
Mitigation/ Workaround N/A
VMware Product Workstation
Product Version 14.x
Running on Any
Severity Critical
Replace with/ Apply Patch 14.1.3
Mitigation/ Workaround None
VMware Product Fusion
Product Version 11.x
Running on OS X
Severity N/A
Replace with/ Apply Patch not affected
Mitigation/ Workaround N/A
VMware Product Fusion
Product Version 10.x
Running on OS X
Severity Critical
Replace with/ Apply Patch 10.1.3
Mitigation/ Workaround None