A number of security flaws have been disclosed in VMware Workstation and Fusion merchandise that may very well be exploited by menace actors to entry delicate info, set off a denial-of-service (DoS) situation, and execute code underneath sure circumstances.
The 4 vulnerabilities impression Workstation variations 17.x and Fusion variations 13.x, with fixes accessible in model 17.5.2 and 13.5.2, respectively, the Broadcom-owned virtualization providers supplier stated.
A quick description of every of the failings is under –
- CVE-2024-22267 (CVSS rating: 9.3) – A use-after-free vulnerability within the Bluetooth system that may very well be exploited by a malicious actor with native administrative privileges on a digital machine to execute code because the digital machine’s VMX course of operating on the host
- CVE-2024-22268 (CVSS rating: 7.1) – A heap buffer-overflow vulnerability within the Shader performance that may very well be exploited by a malicious actor with non-administrative entry to a digital machine with 3D graphics enabled to create a DoS situation
- CVE-2024-22269 (CVSS rating: 7.1) – An info disclosure vulnerability within the Bluetooth system that may very well be exploited by a malicious actor with native administrative privileges on a digital machine to learn privileged info contained in hypervisor reminiscence from a digital machine
- CVE-2024-22270 (CVSS rating: 7.1) – An info disclosure vulnerability within the Host Visitor File Sharing (HGFS) performance that may very well be exploited by a malicious actor with native administrative privileges on a digital machine to learn privileged info contained in hypervisor reminiscence from a digital machine
As short-term workarounds till the patches could be deployed, customers are suggested to show off the Bluetooth assist on the digital machine and disable 3D acceleration characteristic. There are not any mitigations that handle CVE-2024-22270 aside from updating to the most recent model.
It is value noting that CVE-2024-22267, CVE-2024-22269, and CVE-2024-22270 have been initially demonstrated by STAR Labs SG and Theori on the Pwn2Own hacking contest held in Vancouver earlier this March.
The advisory comes greater than two months after the corporate launched patches to deal with 4 security flaws impacting ESXi, Workstation, and Fusion, together with two crucial flaws (CVE-2024-22252 and CVE-2024-22253, CVSS scores: 9.3/8.4)that would result in code execution.