Local Privilege Escalation in VMware Fusion by VMware
CVE-2023-20871
7.8HIGH
Summary
VMware Fusion is impacted by a vulnerability that allows a malicious actor with read/write access to the host operating system to escalate privileges. This can potentially lead to unauthorized root access, compromising the integrity of the host system. It is essential for users to assess their exposure to this risk and implement recommended security measures immediately. For further details, refer to VMware's advisory.
Affected Version(s)
VMware Fusion VMware Fusion (13.x)
References
CVSS V3.1
Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved