High severity7.0NVD Advisory· Published Oct 31, 2017· Updated Jun 17, 2026
CVE-2017-15884
CVE-2017-15884
Description
In HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.0, a local attacker or malware can silently subvert the plugin update process in order to escalate to root privileges.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:hashicorp:vagrant_vmware_fusion:5.0.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:hashicorp:vagrant_vmware_fusion:5.0.0:*:*:*:*:*:*:*
- (no CPE)range: = 5.0.0
Patches
Vulnerability mechanics
References
2- m4.rkw.io/blog/cve201715884-local-root-privesc-in-hashicorp-vagrantvmwarefusion-500.htmlnvdExploitThird Party Advisory
- www.exploit-db.com/exploits/43222/nvd
News mentions
0No linked articles in our index yet.