CVE-2017-4946

CVE Published	2018-01-05
Related CWE(s)	CWE-863: Incorrect Authorization
Related Vendor(s)	vmware
Related Product(s)	vrealize_operations_for_horizon, vrealize_operations_for_published_applications
CVSS 3 Base Score	7.8 (HIGH)
CVSS 3 Attack Complexity	LOW
CVSS 3 Attack Vector	LOCAL

The VMware V4H and V4PA desktop agents (6.x before 6.5.1) contain a privilege escalation vulnerability. Successful exploitation of this issue could result in a low privileged windows user escalating their privileges to SYSTEM.

Cyber Threat Graph Context

Explore how this CVE relates to the wider threat graph

Threat Reports Related to CVE-2017-4946

Report

North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs

This cybersecurity advisory from the U.S. Federal Bureau of Investigation (FBI) and its partners, highlights the cyber espionage activities of the ...

View Source

References

CVE.org

View more information about CVE-2017-4946 on the official MITRE CVE website.

NIST National Vulnerability Database

CVE-2017-4946 on the NIST NVD.