CVE-2023-20870
Summary
VMware Workstation and Fusion contain an out-of-bounds read vulnerability that exists in the functionality for sharing host Bluetooth devices with the virtual machine.
Affected Version(s)
VMware Workstation Pro / Player (Workstation) and VMware Fusion VMware Workstation (17.x) and VMware Fusion (13.x)
Get notified when SecurityVulnerability.io launches alerting π
Well keep you posted π§
News Articles
VMwareSupport Content Notification - Support Portal - Broadcom support portal
VMSA-2023-0008:VMware Workstation and Fusion updates address multiple security vulnerabilities Advisory ID: ...
8 months ago
Infosecurity MagazineCritical Flaw Patched in VMware Workstation and Fusion
A malicious actor with local admin privileges could exploit the vulnerability to escape from the VM
8 months ago
Help Net SecurityVMware fixes critical flaws in virtualization software (CVE-2023-20869, CVE-2023-20870) - Help Net Security
VMware has fixed four flaws (CVE-2023-20869,CVE-2023-20870, CVE-2023-20871, CVE-2023-20872) in its VMware Workstation and Fusion software.
2 years ago
References
CVSS V3.1
Timeline
- π°
First article discovered by Help Net Security
Vulnerability published
Vulnerability Reserved