Home » CVE Vulnerabilities » CVE-2017-4901
CVE-2017-4901 The drag-and-drop (DnD) function in VMware
- CVE ID: CVE-2017-4901
- Vendors: Vmware
- Date: June 08, 2017
- Severity: High
- Impact score: 6.40
- Exploit score: 10.00
The drag-and-drop (DnD) function in VMware Workstation 12.x before version 12.5.4 and Fusion 8.x before version 8.5.5 has an out-of-bounds memory access vulnerability. This may allow a guest to execute code on the operating system that runs Workstation or Fusion.