Critical severity9.8NVD Advisory· Published Jun 8, 2017· Updated May 13, 2026
CVE-2017-4907
CVE-2017-4907
Description
VMware Unified Access Gateway (2.5.x, 2.7.x, 2.8.x prior to 2.8.1) and Horizon View (7.x prior to 7.1.0, 6.x prior to 6.2.4) contain a heap buffer-overflow vulnerability which may allow a remote attacker to execute code on the security gateway.
Affected products
17cpe:2.3:a:vmware:horizon_view:6.2.1:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:a:vmware:horizon_view:6.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:horizon_view:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:horizon_view:6.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:horizon_view:6.1:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:horizon_view:6.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:horizon_view:6.2:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:horizon_view:6.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:horizon_view:6.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:horizon_view:6.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:horizon_view:7.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:unified_access_gateway:2.5:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:vmware:unified_access_gateway:2.5:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:unified_access_gateway:2.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:unified_access_gateway:2.7:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:unified_access_gateway:2.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:unified_access_gateway:2.8:*:*:*:*:*:*:*
- VMware/Unified Access Gatewayv5Range: 2.5.x
- VMware/Horizon Viewv5Range: 7.x prior to 7.1.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- www.securityfocus.com/bid/97914nvdThird Party AdvisoryVDB Entry
- www.vmware.com/security/advisories/VMSA-2017-0008.htmlnvdVendor Advisory
- www.securitytracker.com/id/1038281nvd
News mentions
0No linked articles in our index yet.