VMware ESXi (6.7 before ESXi670-201806401-BG, 6.5 before ESXi650-201806401-BG, 6.0 before ESXi600-201806401-BG and 5.5 before ESXi550-201806401-BG), Workstation (14.x before 14.1.2), and Fusion (10.x before 10.1.2) contain a denial-of-service vulnerability due to NULL pointer dereference issue in RPC handler. Successful exploitation of this issue may allow attackers with normal user privileges to crash their VMs.
结论预警: CVE-2018-6972 综合评估为中等风险(56.2/100):CVSS 技术影响为中级,利用概率(EPSS 3.00%) 强制指令: 梳理受影响资产并纳入修补计划。
风险随态势动态变化;本站持续评估并同步更新本页展示内容。
EPSS 日更估计相对被利用可能性;百分位表示该 CVE 在已评分漏洞中的相对排名(越高表示相对更严重)。
| # | 日期 | 旧 EPSS 分数 | 新 EPSS 分数 | 变化(新 − 旧) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 2.79% | 3.00% | +0.20% |
| 2 | 2026-03-04 | 0.65% | 2.79% | +2.14% |
| 3 | 2026-03-01 | — | 0.65% | — |
完整 EPSS 历史 (共 42 条)
该 CVE 的 CVSS 指标。
| 底座分 | 版本 | 严重度 | 向量 | 可利用性 | 影响 | 分数来源 |
|---|---|---|---|---|---|---|
| 6.5 | 3.1 | MEDIUM |
|
2.8 | 3.6 | [email protected] |
| 4.0 | 2.0 | MEDIUM |
|
8.0 | 2.9 | [email protected] |
| 厂商 | 产品 | 版本 | 原始 CPE |
|---|---|---|---|
| vmware | workstation | >= 14.0, < 14.1.2 | cpe:2.3:a:vmware:workstation:*:*:*:*:*:*:*:* |
| vmware | fusion | >= 10.0, < 10.1.2 | cpe:2.3:a:vmware:fusion:*:*:*:*:*:*:*:* |
| vmware | esxi | 5.5 | cpe:2.3:o:vmware:esxi:5.5:-:*:*:*:*:*:* |
| vmware | esxi | 5.5 | cpe:2.3:o:vmware:esxi:5.5:1:*:*:*:*:*:* |
| vmware | esxi | 5.5 | cpe:2.3:o:vmware:esxi:5.5:2:*:*:*:*:*:* |
| vmware | esxi | 5.5 | cpe:2.3:o:vmware:esxi:5.5:3a:*:*:*:*:*:* |
| vmware | esxi | 5.5 | cpe:2.3:o:vmware:esxi:5.5:3b:*:*:*:*:*:* |
| vmware | esxi | 5.5 | cpe:2.3:o:vmware:esxi:5.5:550-20170901001s:*:*:*:*:*:* |
| vmware | esxi | 5.5 | cpe:2.3:o:vmware:esxi:5.5:550-20170904001:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:-:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:1:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:1a:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:1b:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:2:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:3:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:3a:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201504401:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201505401:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201507101:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201507102:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201507401:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201507402:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201507403:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201507404:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201507405:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201507406:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201507407:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201509101:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201509102:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201509201:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201509202:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201509203:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201509204:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201509205:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201509206:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201509207:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201509208:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201509209:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201509210:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201510401:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201511401:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201601101:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201601102:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201601401:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201601402:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201601403:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201601404:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201601405:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201602401:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201603101:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201603102:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201603201:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201603202:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201603203:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201603204:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201603205:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201603206:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201603207:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201603208:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201605401:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201608101:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201608401:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201608402:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201608403:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201608404:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201608405:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201610410:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201611401:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201611402:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201611403:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201702101:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201702102:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201702201:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201702202:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201702203:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201702204:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201702205:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201702206:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201702207:*:*:*:*:*:* |
| vmware | esxi | 6.0 | cpe:2.3:o:vmware:esxi:6.0:600-201702208:*:*:*:*:*:* |
| URL | 标签 |
|---|---|
| http://www.securityfocus.com/bid/104884 | Third Party Advisory VDB Entry |
| http://www.securitytracker.com/id/1041356 | Broken Link Third Party Advisory VDB Entry |
| http://www.securitytracker.com/id/1041357 | Broken Link Third Party Advisory VDB Entry |
| https://www.vmware.com/security/advisories/VMSA-2018-0018.html | Patch Vendor Advisory |