KLA11346
Multiple vulnerabilities in VMware products

Updated: 06/03/2020
Detect date
?
11/08/2018
Severity
?
Critical
Description

Multiple serious vulnerabilities were found in VWware Workstation and Fusion. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. Uninitialized stack memory vulnerability can be exploited to obtain sensitive information;
  2. Uninitialized stack memory vulnerability can be exploited remotely to execute arbitrary code.
Affected products

VMware Workstation 14.x earlier than 14.1.4
VMware Fusion 10.x earlier than 10.1.4
VMware Workstation 15.x earlier than 15.0.1
VMware Fusion 11.x earlier than 11.0.1

Solution

Update to the latest version
Download Workstation

Original advisories

VMware Security Advisories VMSA-2018-0027

Impacts
?
ACE 
[?]

OSI 
[?]
Related products
VMware Workstation
VMware Fusion
CVE-IDS
?
Find out the statistics of the vulnerabilities spreading in your region