KLA49049
Multiple vulnerabilities in VMware Workstation

Updated: 04/27/2023
Detect date
?
04/25/2023
Severity
?
Critical
Description

Multiple vulnerabilities were found in VMware Workstation. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. Information disclosure vulnerability in bluetooth device-sharing functionality can be exploited to obtain sensitive information.
  2. Out-of-bounds read/write vulnerability can be exploited to cause execute arbitrary code.
  3. Stack-based buffer-overflow vulnerability in bluetooth device-sharing functionality can be exploited to cause execute arbitrary code.
Affected products

VMware Workstation 17.x earlier than 17.0.2

Solution

Update to the latest version
Download VMware Workstation

Original advisories

VMSA-2023-0008

Impacts
?
ACE 
[?]

OSI 
[?]

SB 
[?]
Related products
VMware Workstation
CVE-IDS
?
CVE-2023-208725.0Critical
Find out the statistics of the vulnerabilities spreading in your region