Unsanitized PATH Vulnerability in Vagrant-VMware-Fusion

CVE-2017-16873 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

It is possible to exploit an unsanitized PATH in the suid binary that ships with vagrant-vmware-fusion 4.0.25 through 5.0.4 in order to escalate to root privileges.

Learn more about our Cis Benchmark Audit For Vmware.