CVE-2018-6981

Name of the Vulnerable Software and Affected Versions VMware ESXi versions 6.0 without ESXi600-201811401-BG VMware ESXi versions 6.5 without ESXi650-201811301-BG VMware ESXi versions 6.7 without ESXi670-201811401-BG VMware Workstation versions 14.1.3 and below VMware Workstation version 15 VMware Fusion versions 10.1.3 and below VMware Fusion version 11

Description The issue concerns uninitialized stack memory usage in the vmxnet3 virtual network adapter. This may allow a guest to execute code on the host.

Recommendations For VMware ESXi 6.0, apply the ESXi600-201811401-BG patch to resolve the issue. For VMware ESXi 6.5, apply the ESXi650-201811301-BG patch to resolve the issue. For VMware ESXi 6.7, apply the ESXi670-201811401-BG patch to resolve the issue. For VMware Workstation 14.1.3 and below, update to a version above 14.1.3 to resolve the issue. For VMware Workstation 15, a specific fix is not mentioned, so consider updating to a newer version if available. For VMware Fusion 10.1.3 and below, update to a version above 10.1.3 to resolve the issue. For VMware Fusion 11, a specific fix is not mentioned, so consider updating to a newer version if available.