VMware

Fusion

135 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6

CVE-2023-20870

  • EPSS 0.08%
  • Veröffentlicht 25.04.2023 22:15:09
  • Zuletzt bearbeitet 04.02.2025 18:15:33

VMware Workstation and Fusion contain an out-of-bounds read vulnerability that exists in the functionality for sharing host Bluetooth devices with the virtual machine.

7.8

CVE-2023-20871

  • EPSS 0.07%
  • Veröffentlicht 25.04.2023 21:15:10
  • Zuletzt bearbeitet 04.02.2025 17:15:10

VMware Fusion contains a local privilege escalation vulnerability. A malicious actor with read/write access to the host operating system can elevate privileges to gain root access to the host operating system.

8.8

CVE-2023-20872

  • EPSS 0.65%
  • Veröffentlicht 25.04.2023 21:15:10
  • Zuletzt bearbeitet 04.02.2025 17:15:10

VMware Workstation and Fusion contain an out-of-bounds read/write vulnerability in SCSI CD/DVD device emulation.

8.2

CVE-2022-31705

  • EPSS 0.96%
  • Veröffentlicht 14.12.2022 19:15:13
  • Zuletzt bearbeitet 21.11.2024 07:05:10

VMware ESXi, Workstation, and Fusion contain a heap out-of-bounds write vulnerability in the USB 2.0 controller (EHCI). A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual ...

6.7

CVE-2021-22040

  • EPSS 0.67%
  • Veröffentlicht 16.02.2022 17:15:10
  • Zuletzt bearbeitet 21.11.2024 05:49:29

VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the XHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX pr...

6.7

CVE-2021-22041

  • EPSS 0.58%
  • Veröffentlicht 16.02.2022 17:15:10
  • Zuletzt bearbeitet 21.11.2024 05:49:29

VMware ESXi, Workstation, and Fusion contain a double-fetch vulnerability in the UHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX proc...

7.5

CVE-2021-22043

  • EPSS 0.46%
  • Veröffentlicht 16.02.2022 17:15:10
  • Zuletzt bearbeitet 21.11.2024 05:49:29

VMware ESXi contains a TOCTOU (Time-of-check Time-of-use) vulnerability that exists in the way temporary files are handled. A malicious actor with access to settingsd, may exploit this issue to escalate their privileges by writing arbitrary files.

7.8

CVE-2021-22045

  • EPSS 2.43%
  • Veröffentlicht 04.01.2022 22:15:07
  • Zuletzt bearbeitet 21.11.2024 05:49:29

VMware ESXi (7.0, 6.7 before ESXi670-202111101-SG and 6.5 before ESXi650-202110101-SG), VMware Workstation (16.2.0) and VMware Fusion (12.2.0) contains a heap-overflow vulnerability in CD-ROM device emulation. A malicious actor with access to a virtu...

8.4

CVE-2020-3960

  • EPSS 0.13%
  • Veröffentlicht 15.09.2021 13:15:07
  • Zuletzt bearbeitet 21.11.2024 05:32:03

VMware ESXi (6.7 before ESXi670-202006401-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x before 15.5.5), and Fusion (11.x before 11.5.5) contain an out-of-bounds read vulnerability in NVMe functionality. A malicious actor with local non-a...

6.5

CVE-2020-3999

  • EPSS 0.14%
  • Veröffentlicht 21.12.2020 16:15:13
  • Zuletzt bearbeitet 08.08.2025 10:32:53

VMware ESXi (7.0 prior to ESXi70U1c-17325551), VMware Workstation (16.x prior to 16.0 and 15.x prior to 15.5.7), VMware Fusion (12.x prior to 12.0 and 11.x prior to 11.5.7) and VMware Cloud Foundation contain a denial of service vulnerability due to ...