Searching
..

Click anywhere to stop

KLA49049
Multiple vulnerabilities in VMware Workstation

Updated: 01/25/2024
Detect date
?
04/25/2023
Severity
?
Critical
Description

Multiple vulnerabilities were found in VMware Workstation. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. Information disclosure vulnerability in bluetooth device-sharing functionality can be exploited to obtain sensitive information.
  2. Out-of-bounds read/write vulnerability can be exploited to cause execute arbitrary code.
  3. Stack-based buffer-overflow vulnerability in bluetooth device-sharing functionality can be exploited to cause execute arbitrary code.
Affected products

VMware Workstation 17.x earlier than 17.0.2

Solution

Update to the latest version
Download VMware Workstation

Original advisories

VMSA-2023-0008

Impacts
?
ACE 
[?]

OSI 
[?]

SB 
[?]
Related products
VMware Workstation
CVE-IDS
?
CVE-2023-208706.0High
CVE-2023-208728.8Critical
CVE-2023-208698.2Critical
Find out the statistics of the vulnerabilities spreading in your region