VMware

Fusion

135 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2024-22268

  • EPSS 0.12%
  • Published 14.05.2024 16:16:07
  • Last modified 27.03.2025 15:15:49

VMware Workstation and Fusion contain a heap buffer-overflow vulnerability in the Shader functionality. A malicious actor with non-administrative access to a virtual machine with 3D graphics enabled may be able to exploit this vulnerability to create...

8.2

CVE-2024-22267

  • EPSS 0.12%
  • Published 14.05.2024 16:16:06
  • Last modified 14.03.2025 15:15:39

VMware Workstation and Fusion contain a use-after-free vulnerability in the vbluetooth device. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process run...

7.1

CVE-2024-22255

  • EPSS 4.35%
  • Published 05.03.2024 18:15:48
  • Last modified 07.05.2025 15:37:25

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability in the UHCI USB controller. A malicious actor with administrative access to a virtual machine may be able to exploit this issue to leak memory from the vmx process. ...

6.7

CVE-2024-22252

  • EPSS 0.35%
  • Published 05.03.2024 18:15:47
  • Last modified 27.03.2025 20:15:21

VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the XHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX pr...

6.7

CVE-2024-22253

  • EPSS 0.08%
  • Published 05.03.2024 18:15:47
  • Last modified 07.05.2025 15:35:46

VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the UHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX pr...

4.4

CVE-2024-22251

  • EPSS 0.06%
  • Published 29.02.2024 01:44:05
  • Last modified 10.06.2025 19:33:10

VMware Workstation and Fusion contain an out-of-bounds read vulnerability in the USB CCID (chip card interface device). A malicious actor with local administrative privileges on a virtual machine may trigger an out-of-bounds read leading to informati...

7.8

CVE-2023-34045

  • EPSS 0.12%
  • Published 20.10.2023 10:15:12
  • Last modified 07.03.2025 19:15:35

VMware Fusion(13.x prior to 13.5) contains a local privilege escalation vulnerability that occurs during installation for the first time (the user needs to drag or copy the application to a folder from the '.dmg' volume) or when installing an upgr...

6

CVE-2023-34044

  • EPSS 0.06%
  • Published 20.10.2023 09:15:12
  • Last modified 21.11.2024 08:06:27

VMware Workstation( 17.x prior to 17.5) and Fusion(13.x prior to 13.5) contain an out-of-bounds read vulnerability that exists in the functionality for sharing host Bluetooth devices with the virtual machine. A malicious actor with local administra...

7

CVE-2023-34046

  • EPSS 0.14%
  • Published 20.10.2023 09:15:12
  • Last modified 07.03.2025 19:15:35

VMware Fusion(13.x prior to 13.5) contains a TOCTOU (Time-of-check Time-of-use) vulnerability that occurs during installation for the first time (the user needs to drag or copy the application to a folder from the '.dmg' volume) or when installing...

8.2

CVE-2023-20869

  • EPSS 2.26%
  • Published 25.04.2023 22:15:09
  • Last modified 04.02.2025 18:15:32

VMware Workstation (17.x) and VMware Fusion (13.x) contain a stack-based buffer-overflow vulnerability that exists in the functionality for sharing host Bluetooth devices with the virtual machine.