VMware ESXi 6.7 without ESXi670-201811401-BG and VMware ESXi 6.5 without ESXi650-201811301-BG contain uninitialized stack memory usage in the vmxnet3 virtual network adapter which may lead to an information leak from host to guest.
http://www.securitytracker.com/id/1042055
http://www.securityfocus.com/bid/105882
https://www.tenable.com/blog/vmware-issues-security-advisory-for-guest-to-host-escape-vulnerability-cve-2018-6981
https://www.vmware.com/security/advisories/VMSA-2018-0027.html
Source: Mitre, NVD
Published: 2018-12-04
Updated: 2024-11-21
Base Score: 4.9
Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:N/A:N
Severity: Medium
Base Score: 6.5
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
EPSS: 0.00358