Vulnerabilities > CVE-2023-20871 - Unspecified vulnerability in VMWare Fusion

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

vmware

NVD

Published: 2023-04-25

Updated: 2023-05-04

Summary

VMware Fusion contains a local privilege escalation vulnerability. A malicious actor with read/write access to the host operating system can elevate privileges to gain root access to the host operating system.

Vulnerable Configurations

Part	Description	Count
Application	Vmware Vmware Fusion *	1
OS	Apple Apple MAC OS X -	1

References

https://www.vmware.com/security/advisories/VMSA-2023-0008.html

Summary

Vulnerable Configurations

Related news

References