Denial-of-Service Vulnerability in VMware Tools for macOS
CVE-2020-3972

3.3LOW

Key Information:

Vendor: Vmware
Status: Vmware Tools For Mac OS
Vendor: CVE Published:; 19 June 2020

What is CVE-2020-3972?

VMware Tools for macOS versions 11.x.x and earlier, prior to 11.1.1, contain a vulnerability in the Host-Guest File System (HGFS) implementation. This flaw allows attackers with non-admin privileges on guest macOS virtual machines to induce a denial-of-service condition, potentially disrupting the functionality of their own VMs. It is crucial for users to update to the latest version to mitigate this risk.

Affected Version(s)

VMware Tools for macOS VMware Tools for macOS (11.x.x and prior before 11.1.1)

References

https://www.vmware.com/security/advisories/VMSA-2020-0014...

x_refsource_MISC

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 19, 2020
Vulnerability Reserved
Dec 30, 2019

Vmware

What is CVE-2020-3972?

Affected Version(s)

References

CVSS V3.1

Timeline