CVE-2017-4902

EPSS 0.06% · P19 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2017-4902

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

VMware ESXi 6.5 without patch ESXi650-201703410-SG and 5.5 without patch ESXi550-201703401-SG; Workstation Pro / Player 12.x prior to 12.5.5; and Fusion Pro / Fusion 8.x prior to 8.5.6 have a Heap Buffer Overflow in SVGA. This issue may allow a guest to execute code on the host.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

多款VMware产品SVGA 缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

VMware ESXi等都是美国威睿（VMware）公司的产品。VMware ESXi是一套可直接安装在物理服务器上的服务器虚拟化平台；VMware Workstation Pro、VMware Workstation Player、VMware Fusion都是虚拟机软件。SVGA是其中的一个视频图形适配器。多款VMware产品中的SVGA存在堆缓冲区溢出漏洞。攻击者可利用该漏洞在主机上执行代码。以下产品和版本受到影响：VMware ESXi 6.5版本，5.5版本；Workstation Pro /

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
VMware	ESXi	6.5 without patch ESXi650-201703410-SG	-
VMware	Workstation Pro / Player	12.x prior to 12.5.5	-
VMware	Fusion Pro / Fusion	8.x prior to 8.5.6	-

II. Public POCs for CVE-2017-4902

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2017-4902

Please Login to view more intelligence information

http://www.vmware.com/security/advisories/VMSA-2017-0006.htmlx_refsource_CONFIRM
http://www.securityfocus.com/bid/97163vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1038148vdb-entryx_refsource_SECTRACK
http://www.securitytracker.com/id/1038149vdb-entryx_refsource_SECTRACK
https://nvd.nist.gov/vuln/detail/CVE-2017-4902

Same Patch Batch · VMware · 2017-06-07 · 9 CVEs total

CVE-2017-4914		VMware vSphere Data Protection 安全漏洞
CVE-2017-4917		VMware vSphere Data Protection 信息泄露漏洞
CVE-2017-4898		VMware Workstation Pro和VMware Workstation Player 安全漏洞
CVE-2017-4899		VMware Workstation Pro和VMware Workstation Player SVGA驱动程序安全漏洞
CVE-2017-4900		VMware Workstation Pro和VMware Workstation Player SVGA驱动程序安全漏洞
CVE-2017-4903		多款VMware产品缓冲区错误漏洞
CVE-2017-4904		多款VMware产品XHCI controller 缓冲区错误漏洞
CVE-2017-4905		多款VMware产品信息泄露漏洞

IV. Related Vulnerabilities

Same product: ESXi

Same vendor: VMware

V. Comments for CVE-2017-4902

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2017-4902

I. Basic Information for CVE-2017-4902

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2017-4902

III. Intelligence Information for CVE-2017-4902

Same Patch Batch · VMware · 2017-06-07 · 9 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2017-4902

Leave a comment