CVE-2017-4931

high VMware
CVSS v3 Base Score
7.8
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
0.2%
Exploitation probability in 30 days
Top 56% most likely to be exploited
Attack Characteristics
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Confidentiality
High
Integrity
High
Availability
High
Published: November 16, 2017 (3101 days ago)
Last Modified: May 13, 2026
Vendor: VMware
Source: NVD

Description

VMware AirWatch Console 9.x prior to 9.2.0 contains a vulnerability that could allow an authenticated AWC user to add malicious data to an enrolled device's log files. Successful exploitation of this issue could result in an unsuspecting AWC user opening a CSV file which contains malicious content.

CWE

CWE-20

Affected Products

vmware airwatch

References

🔗 www.securityfocus.com 🔗 www.securitytracker.com 🔗 www.vmware.com 🔗 www.securityfocus.com 🔗 www.securitytracker.com