Описание
VMware Workstation( 17.x prior to 17.5) and Fusion(13.x prior to 13.5) contain an out-of-bounds read vulnerability that exists in the functionality for sharing host Bluetooth devices with the virtual machine. A malicious actor with local administrative privileges on a virtual machine may be able to read privileged information contained in hypervisor memory from a virtual machine.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Одновременно
EPSS
7.1 High
CVSS3
6 Medium
CVSS3
Дефекты
Связанные уязвимости
VMware Workstation( 17.x prior to 17.5) and Fusion(13.x prior to 13.5) contain an out-of-bounds read vulnerability that exists in the functionality for sharing host Bluetooth devices with the virtual machine. A malicious actor with local administrative privileges on a virtual machine may be able to read privileged information contained in hypervisor memory from a virtual machine.
Уязвимость функции совместного использования хост-устройств Bluetooth с виртуальной машиной гипервизоров VMware Workstation и VMware Fusion, позволяющая нарушителю раскрыть защищаемую информацию
EPSS
7.1 High
CVSS3
6 Medium
CVSS3