CVE-2017-4927
First published: Fri Nov 17 2017(Updated: )
VMware vCenter Server (6.5 prior to 6.5 U1 and 6.0 prior to 6.0 U3c) does not correctly handle specially crafted LDAP network packets which may allow for remote denial of service.
Credit: security@vmware.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| VMware vCenter | >=6.0<6.0_u3c | |
| VMware vCenter | >=6.5<6.5_u1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2017-4927?
CVE-2017-4927 is a vulnerability that affects VMware vCenter Server (6.5 prior to 6.5 U1 and 6.0 prior to 6.0 U3c).
What is the severity of CVE-2017-4927?
CVE-2017-4927 has a high severity with a CVSS score of 7.5.
What is the impact of CVE-2017-4927?
CVE-2017-4927 allows for remote denial of service.
How does CVE-2017-4927 affect VMware vCenter Server?
CVE-2017-4927 affects VMware vCenter Server versions 6.5 prior to 6.5 U1 and 6.0 prior to 6.0 U3c.
Is there a fix available for CVE-2017-4927?
Yes, VMware has released a security advisory (VMSA-2017-0017) with information on how to mitigate the vulnerability.
- agent/type
- agent/softwarecombine
- agent/severity
- agent/weakness
- agent/author
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/vmware
- canonical/vmware vcenter
- version/vmware vcenter/6.0
- version/vmware vcenter/6.5