Versio.io

CVE-2017-4940

Common vulnerabilities & exposures (CVE)

CVE databaseCVE database blogpostRelease & EoL database
 
Published at: - 20-12-2017 04:29
Last modified: - 03-02-2022 08:45
Total changes: - 2

Description

The ESXi Host Client in VMware ESXi (6.5 before ESXi650-201712103-SG, 5.5 before ESXi600-201711103-SG and 5.5 before ESXi550-201709102-SG) contains a vulnerability that may allow for stored cross-site scripting (XSS). An attacker can exploit this vulnerability by injecting Javascript, which might get executed when other users access the Host Client.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Low
Attack complexity
Network
Attack vector
None
Availability
Low
Confidentiality
Low
Integrity
None
Privileges required
Changed
Scope
Required
User interaction
6.1
Base score
2.8
2.7
Exploitability score
Impact score
 

Verification logic

OR
vendor=vmware AND product=esxi AND version=5.5 AND update=-
vendor=vmware AND product=esxi AND version=5.5 AND update=1
vendor=vmware AND product=esxi AND version=5.5 AND update=2
vendor=vmware AND product=esxi AND version=5.5 AND update=3a
vendor=vmware AND product=esxi AND version=5.5 AND update=3b
vendor=vmware AND product=esxi AND version=5.5 AND update=550-20170901001s
vendor=vmware AND product=esxi AND version=6.0 AND update=-
vendor=vmware AND product=esxi AND version=6.0 AND update=1
vendor=vmware AND product=esxi AND version=6.0 AND update=1a
vendor=vmware AND product=esxi AND version=6.0 AND update=1b
vendor=vmware AND product=esxi AND version=6.0 AND update=2
vendor=vmware AND product=esxi AND version=6.0 AND update=3
vendor=vmware AND product=esxi AND version=6.0 AND update=3a
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201504401
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201505401
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201507101
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201507102
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201507401
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201507402
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201507403
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201507404
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201507405
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201507406
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201507407
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201509101
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201509102
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201509201
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201509202
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201509203
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201509204
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201509205
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201509206
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201509207
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201509208
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201509209
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201509210
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201510401
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201511401
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201601101
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201601102
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201601401
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201601402
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201601403
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201601404
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201601405
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201602401
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201603101
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201603102
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201603201
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201603202
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201603203
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201603204
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201603205
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201603206
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201603207
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201603208
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201605401
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201608101
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201608401
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201608402
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201608403
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201608404
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201608405
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201610410
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201611401
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201611402
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201611403
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201702101
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201702102
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201702201
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201702202
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201702203
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201702204
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201702205
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201702206
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201702207
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201702208
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201702209
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201702210
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201702211
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201702212
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201703401
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201706101
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201706102
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201706103
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201706401
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201706402
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201706403
vendor=vmware AND product=esxi AND version=6.0 AND update=600-201710301
vendor=vmware AND product=esxi AND version=6.5 AND update=-
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201701001
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201703001
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201703002
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201704001
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707101
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707102
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707103
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707201
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707202
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707203
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707204
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707205
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707206
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707207
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707208
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707209
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707210
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707211
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707212
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707213
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707214
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707215
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707216
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707217
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707218
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707219
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707220
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201707221
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201710001
vendor=vmware AND product=esxi AND version=6.5 AND update=650-201712001
 

Reference

 


Keywords

NVD

 

CVE-2017-4940

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures

 

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.