Heap Overflow Vulnerability in VMware ESXi, Workstation, and Fusion
CVE-2020-3967

7.5HIGH

Key Information:

Vendor: Vmware
Status: Vmware Esxi; Workstation; Fusion
Vendor: CVE Published:; 25 June 2020

What is CVE-2020-3967?

VMware ESXi, Workstation, and Fusion are susceptible to a heap overflow vulnerability in the USB 2.0 controller (EHCI). This vulnerability allows a malicious actor with local access to a virtual machine to potentially execute code on the hypervisor. For the exploit to be successful, additional conditions must be present beyond the attacker's control, making it a complex scenario for unauthorized code execution. IT administrators should prioritize patching and securing their VMware products as indicated in the official advisory.

Affected Version(s)

Fusion 11.x before 11.5.5

VMware ESXi 7.0 before ESXi_7.0.0-1.20.16321839

VMware ESXi 6.7 before ESXi670-202004101-SG

References

https://www.vmware.com/security/advisories/VMSA-2020-0015...

x_refsource_CONFIRM

https://www.zerodayinitiative.com/advisories/ZDI-20-784/

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 25, 2020
Vulnerability Reserved
Dec 30, 2019

Vmware

What is CVE-2020-3967?

Affected Version(s)

References

CVSS V3.1

Timeline