製品・ソフトウェアに関する情報

JVN脆弱性詳細

複数の VMware 製品における NULL ポインタデリファレンスに関する脆弱性

タイトル	複数の VMware 製品における NULL ポインタデリファレンスに関する脆弱性
概要	VMware ESXi、 Workstation、および Fusion には、NULL ポインタデリファレンスに関する脆弱性が存在します。
想定される影響	サービス運用妨害 (DoS) 状態にされる可能性があります。
対策	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
公表日	2018年7月19日0:00
登録日	2018年10月29日14:36
最終更新日	2018年10月29日14:36

CVSS3.0 : 警告
スコア	6.5
ベクター	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CVSS2.0 : 警告
スコア	4
ベクター	AV:N/AC:L/Au:S/C:N/I:N/A:P

影響を受けるシステム

VMware

VMware ESXi ESXi550-201806401-BG 未満の 5.5

VMware ESXi ESXi600-201806401-BG 未満の 6.0

VMware ESXi ESXi650-201806401-BG 未満の 6.5

VMware ESXi ESXi670-201806401-BG 未満の 6.7

VMware Fusion 10.1.2 未満の 10.x

VMware Workstation 14.1.2 未満の 14.x

CVE (情報セキュリティ共通脆弱性識別子)

No	名前	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2018-6972	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6972
National Vulnerability Database (NVD)
2	CVE-2018-6972	https://nvd.nist.gov/vuln/detail/CVE-2018-6972

CWE (共通脆弱性タイプ一覧)

No	名前	URL
JVNDB
1	CWE-476	http://cwe.mitre.org/data/definitions/476.html

ベンダー情報

No	名前	URL
VMware Security Advisories
1	VMSA-2018-0018	https://www.vmware.com/security/advisories/VMSA-2018-0018.html

変更履歴

No	変更内容	変更日
1	[2018年10月29日] 掲載	2018年10月29日14:36

NVD脆弱性情報

CVE-2018-6972

概要	VMware ESXi (6.7 before ESXi670-201806401-BG, 6.5 before ESXi650-201806401-BG, 6.0 before ESXi600-201806401-BG and 5.5 before ESXi550-201806401-BG), Workstation (14.x before 14.1.2), and Fusion (10.x before 10.1.2) contain a denial-of-service vulnerability due to NULL pointer dereference issue in RPC handler. Successful exploitation of this issue may allow attackers with normal user privileges to crash their VMs.
公表日	2018年7月25日22:29
登録日	2021年3月1日19:36
最終更新日	2024年11月21日13:11

影響を受けるソフトウェアの構成

構成1		以上	以下	より上	未満
cpe:2.3:a:vmware:workstation::::::::		14.0			14.1.2

構成2		以上	以下	より上	未満
cpe:2.3:a:vmware:fusion::::::::		10.0			10.1.2
実行環境
1	cpe:2.3:o:apple:mac_os_x:-:::::::*

構成3	以上	以下	より上	未満
cpe:2.3:o:vmware:esxi:6.0:-::::::
cpe:2.3:o:vmware:esxi:6.5:-::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707201::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707202::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707203::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707204::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707205::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707206::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707207::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707208::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707209::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707210::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707211::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707212::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707213::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707214::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707215::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707216::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707217::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707218::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707219::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707220::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707221::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707102::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707101::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707103::::::
cpe:2.3:o:vmware:esxi:6.7:-::::::
cpe:2.3:o:vmware:esxi:6.7:670-201806001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201701001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201703001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201703002::::::
cpe:2.3:o:vmware:esxi:6.5:650-201704001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201710001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201712001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201803001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201806001::::::
cpe:2.3:o:vmware:esxi:6.5:2::::::
cpe:2.3:o:vmware:esxi:6.0:600-201504401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201505401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507101::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507102::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507403::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507404::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507405::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507402::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507407::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507406::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509101::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509102::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509205::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509209::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509202::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509206::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509210::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509204::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509203::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509207::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509208::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509201::::::
cpe:2.3:o:vmware:esxi:6.0:600-201510401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201511401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201601102::::::
cpe:2.3:o:vmware:esxi:6.0:600-201601101::::::
cpe:2.3:o:vmware:esxi:6.0:600-201601403::::::
cpe:2.3:o:vmware:esxi:6.0:600-201601402::::::
cpe:2.3:o:vmware:esxi:6.0:600-201601404::::::
cpe:2.3:o:vmware:esxi:6.0:600-201601405::::::
cpe:2.3:o:vmware:esxi:6.0:600-201601401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201602401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603102::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603101::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603202::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603201::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603204::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603208::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603206::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603207::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603205::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603203::::::
cpe:2.3:o:vmware:esxi:6.0:600-201605401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201608101::::::
cpe:2.3:o:vmware:esxi:6.0:600-201608401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201608403::::::
cpe:2.3:o:vmware:esxi:6.0:600-201608402::::::
cpe:2.3:o:vmware:esxi:6.0:600-201608405::::::
cpe:2.3:o:vmware:esxi:6.0:600-201608404::::::
cpe:2.3:o:vmware:esxi:6.0:600-201610410::::::
cpe:2.3:o:vmware:esxi:6.0:600-201611402::::::
cpe:2.3:o:vmware:esxi:6.0:600-201611401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201611403::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702101::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702102::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702201::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702209::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702202::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702211::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702204::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702203::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702207::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702206::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702205::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702212::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702208::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702210::::::
cpe:2.3:o:vmware:esxi:6.0:600-201703401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201706101::::::
cpe:2.3:o:vmware:esxi:6.0:600-201706102::::::
cpe:2.3:o:vmware:esxi:6.0:600-201706103::::::
cpe:2.3:o:vmware:esxi:5.5:-::::::
cpe:2.3:o:vmware:esxi:6.0:1::::::
cpe:2.3:o:vmware:esxi:6.0:1a::::::
cpe:2.3:o:vmware:esxi:6.0:1b::::::
cpe:2.3:o:vmware:esxi:6.0:2::::::
cpe:2.3:o:vmware:esxi:6.0:3::::::
cpe:2.3:o:vmware:esxi:6.0:3a::::::
cpe:2.3:o:vmware:esxi:5.5:550-20170904001::::::
cpe:2.3:o:vmware:esxi:5.5:550-20170901001s::::::
cpe:2.3:o:vmware:esxi:5.5:1::::::
cpe:2.3:o:vmware:esxi:5.5:2::::::
cpe:2.3:o:vmware:esxi:5.5:3a::::::
cpe:2.3:o:vmware:esxi:5.5:3b::::::

構成3	以上	以下	より上	未満
cpe:2.3:o:vmware:esxi:6.0:-::::::
cpe:2.3:o:vmware:esxi:6.5:-::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707201::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707202::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707203::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707204::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707205::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707206::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707207::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707208::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707209::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707210::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707211::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707212::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707213::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707214::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707215::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707216::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707217::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707218::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707219::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707220::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707221::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707102::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707101::::::
cpe:2.3:o:vmware:esxi:6.5:650-201707103::::::
cpe:2.3:o:vmware:esxi:6.7:-::::::
cpe:2.3:o:vmware:esxi:6.7:670-201806001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201701001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201703001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201703002::::::
cpe:2.3:o:vmware:esxi:6.5:650-201704001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201710001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201712001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201803001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201806001::::::
cpe:2.3:o:vmware:esxi:6.5:2::::::
cpe:2.3:o:vmware:esxi:6.0:600-201504401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201505401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507101::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507102::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507403::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507404::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507405::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507402::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507407::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507406::::::
cpe:2.3:o:vmware:esxi:6.0:600-201507401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509101::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509102::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509205::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509209::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509202::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509206::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509210::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509204::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509203::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509207::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509208::::::
cpe:2.3:o:vmware:esxi:6.0:600-201509201::::::
cpe:2.3:o:vmware:esxi:6.0:600-201510401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201511401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201601102::::::
cpe:2.3:o:vmware:esxi:6.0:600-201601101::::::
cpe:2.3:o:vmware:esxi:6.0:600-201601403::::::
cpe:2.3:o:vmware:esxi:6.0:600-201601402::::::
cpe:2.3:o:vmware:esxi:6.0:600-201601404::::::
cpe:2.3:o:vmware:esxi:6.0:600-201601405::::::
cpe:2.3:o:vmware:esxi:6.0:600-201601401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201602401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603102::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603101::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603202::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603201::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603204::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603208::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603206::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603207::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603205::::::
cpe:2.3:o:vmware:esxi:6.0:600-201603203::::::
cpe:2.3:o:vmware:esxi:6.0:600-201605401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201608101::::::
cpe:2.3:o:vmware:esxi:6.0:600-201608401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201608403::::::
cpe:2.3:o:vmware:esxi:6.0:600-201608402::::::
cpe:2.3:o:vmware:esxi:6.0:600-201608405::::::
cpe:2.3:o:vmware:esxi:6.0:600-201608404::::::
cpe:2.3:o:vmware:esxi:6.0:600-201610410::::::
cpe:2.3:o:vmware:esxi:6.0:600-201611402::::::
cpe:2.3:o:vmware:esxi:6.0:600-201611401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201611403::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702101::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702102::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702201::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702209::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702202::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702211::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702204::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702203::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702207::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702206::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702205::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702212::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702208::::::
cpe:2.3:o:vmware:esxi:6.0:600-201702210::::::
cpe:2.3:o:vmware:esxi:6.0:600-201703401::::::
cpe:2.3:o:vmware:esxi:6.0:600-201706101::::::
cpe:2.3:o:vmware:esxi:6.0:600-201706102::::::
cpe:2.3:o:vmware:esxi:6.0:600-201706103::::::
cpe:2.3:o:vmware:esxi:5.5:-::::::
cpe:2.3:o:vmware:esxi:6.0:1::::::
cpe:2.3:o:vmware:esxi:6.0:1a::::::
cpe:2.3:o:vmware:esxi:6.0:1b::::::
cpe:2.3:o:vmware:esxi:6.0:2::::::
cpe:2.3:o:vmware:esxi:6.0:3::::::
cpe:2.3:o:vmware:esxi:6.0:3a::::::
cpe:2.3:o:vmware:esxi:5.5:550-20170904001::::::
cpe:2.3:o:vmware:esxi:5.5:550-20170901001s::::::
cpe:2.3:o:vmware:esxi:5.5:1::::::
cpe:2.3:o:vmware:esxi:5.5:2::::::
cpe:2.3:o:vmware:esxi:5.5:3a::::::
cpe:2.3:o:vmware:esxi:5.5:3b::::::

No	URL	タグ
1	http://www.securityfocus.com/bid/104884	Third Party Advisory VDB Entry
2	http://www.securityfocus.com/bid/104884	Third Party Advisory VDB Entry
3	http://www.securitytracker.com/id/1041356	Broken Link Third Party Advisory VDB Entry
4	http://www.securitytracker.com/id/1041356	Broken Link Third Party Advisory VDB Entry
5	http://www.securitytracker.com/id/1041357	Broken Link Third Party Advisory VDB Entry
6	http://www.securitytracker.com/id/1041357	Broken Link Third Party Advisory VDB Entry
7	https://www.vmware.com/security/advisories/VMSA-2018-0018.html	Patch Vendor Advisory
8	https://www.vmware.com/security/advisories/VMSA-2018-0018.html	Patch Vendor Advisory