CVE-2023-20870
Key Information
- Vendor
- Vmware
- Status
- VMware Workstation Pro / Player (Workstation) and VMware Fusion
- Vendor
- CVE Published:
- 25 April 2023
Badges
Summary
VMware Workstation and Fusion contain an out-of-bounds read vulnerability that exists in the functionality for sharing host Bluetooth devices with the virtual machine.
Affected Version(s)
VMware Workstation Pro / Player (Workstation) and VMware Fusion = VMware Workstation (17.x) and VMware Fusion (13.x)
News Articles
Support Content Notification - Support Portal - Broadcom support portal
VMSA-2023-0008:VMware Workstation and Fusion updates address multiple security vulnerabilities Advisory ID: ...
6 months ago
Critical Flaw Patched in VMware Workstation and Fusion
A malicious actor with local admin privileges could exploit the vulnerability to escape from the VM
6 months ago
VMware fixes critical flaws in virtualization software (CVE-2023-20869, CVE-2023-20870) - Help Net Security
VMware has fixed four flaws (CVE-2023-20869,CVE-2023-20870, CVE-2023-20871, CVE-2023-20872) in its VMware Workstation and Fusion software.
2 years ago
CVSS V3.1
Timeline
First article discovered by Help Net Security
Vulnerability published.
Vulnerability Reserved.