Vulnerabilities > Vmware > Fusion > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-05-29 | CVE-2020-3957 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in VMWare Fusion, Horizon Client and Remote Console VMware Fusion (11.x before 11.5.5), VMware Remote Console for Mac (11.x and prior) and VMware Horizon Client for Mac (5.x and prior) contain a local privilege escalation vulnerability due to a Time-of-check Time-of-use (TOCTOU) issue in the service opener. | 7.0 |
2020-03-17 | CVE-2020-3950 | Improper Privilege Management vulnerability in VMWare Fusion, Horizon Client and Remote Console VMware Fusion (11.x before 11.5.2), VMware Remote Console for Mac (11.x and prior before 11.0.1) and Horizon Client for Mac (5.x and prior before 5.4.0) contain a privilege escalation vulnerability due to improper use of setuid binaries. | 7.8 |
2020-03-16 | CVE-2020-3948 | Incorrect Permission Assignment for Critical Resource vulnerability in VMWare Fusion and Workstation Linux Guest VMs running on VMware Workstation (15.x before 15.5.2) and Fusion (11.x before 11.5.2) contain a local privilege escalation vulnerability due to improper file permissions in Cortado Thinprint. | 7.8 |
2020-03-16 | CVE-2020-3947 | Use After Free vulnerability in VMWare Fusion and Workstation VMware Workstation (15.x before 15.5.2) and Fusion (11.x before 11.5.2) contain a use-after vulnerability in vmnetdhcp. | 8.8 |
2019-11-20 | CVE-2019-5542 | Unspecified vulnerability in VMWare Fusion and Workstation VMware Workstation (15.x before 15.5.1) and Fusion (11.x before 11.5.1) contain a denial-of-service vulnerability in the RPC handler. | 7.7 |
2019-11-20 | CVE-2019-5540 | Memory Leak vulnerability in VMWare Fusion and Workstation VMware Workstation (15.x before 15.5.1) and Fusion (11.x before 11.5.1) contain an information disclosure vulnerability in vmnetdhcp. | 7.7 |
2019-10-10 | CVE-2019-5527 | Use After Free vulnerability in VMWare products ESXi, Workstation, Fusion, VMRC and Horizon Client contain a use-after-free vulnerability in the virtual sound device. | 8.8 |
2019-04-02 | CVE-2019-5524 | Out-of-bounds Write vulnerability in VMWare Fusion and Workstation VMware Workstation (14.x before 14.1.6) and Fusion (10.x before 10.1.6) contain an out-of-bounds write vulnerability in the e1000 virtual network adapter. | 8.8 |
2019-04-02 | CVE-2019-5515 | Out-of-bounds Write vulnerability in VMWare Fusion and Workstation VMware Workstation (15.x before 15.0.3, 14.x before 14.1.6) and Fusion (11.x before 11.0.3, 10.x before 10.1.6) updates address an out-of-bounds write vulnerability in the e1000 and e1000e virtual network adapters. | 8.8 |
2019-04-01 | CVE-2019-5514 | Missing Authentication for Critical Function vulnerability in VMWare Fusion 11.0.0/11.0.1/11.0.2 VMware VMware Fusion (11.x before 11.0.3) contains a security vulnerability due to certain unauthenticated APIs accessible through a web socket. | 8.8 |