ESXi 5.5 / 6.0 / 6.5 / Multiple Vulnerabilities (VMSA-2017-0021) (VMSA-2018-0002) (Spectre) (remote check)

High Nessus Plugin ID 105486

Synopsis

The remote VMware ESXi host is affected by multiple vulnerabilities.

Description

The remote VMware ESXi host is version 5.5, 6.0, or 6.5 and is missing a security patch. It is, therefore, affected by multiple vulnerabilities that can allow code execution in a virtual machine via the authenticated VNC session as well as cause information disclosure from one virtual machine to another virtual machine on the same host.

Solution

Apply the appropriate patch as referenced in the vendor advisory.

See Also

https://www.vmware.com/security/advisories/VMSA-2017-0021.html

https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0369

https://www.vmware.com/us/security/advisories/VMSA-2018-0002.html

https://meltdownattack.com/

Plugin Details

Severity: High

ID: 105486

File Name: vmware_esxi_VMSA-2017-0021.nasl

Version: $Revision: 1.7 $

Type: remote

Family: Misc.

Published: 2017/12/29

Modified: 2018/01/15

Dependencies: 57396

Risk Information

Risk Factor: High

CVSSv2

Base Score: 9.3

Temporal Score: 8.4

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:POC/RL:U/RC:ND

CVSSv3

Base Score: 8.8

Temporal Score: 8.3

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:P/RL:U/RC:X

Vulnerability Information

CPE: cpe:/o:vmware:esxi

Required KB Items: Host/VMware/version, Host/VMware/release

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2017/12/19

Vulnerability Publication Date: 2017/12/19

Reference Information

CVE: CVE-2017-4940, CVE-2017-4941, CVE-2017-5753, CVE-2017-5715

BID: 102238, 102241, 102376, 102371

OSVDB: 171160, 171223, 171897

VMSA: 2017-0021, 2018-0002

IAVA: 2018-A-0020

IAVB: 2018-B-0004, 2018-B-0005, 2018-B-0006