QID 378447
Date Published: 2023-04-26
QID 378447: VMware Workstation and VMware Fusion Out-of-bounds read/write Vulnerability (VMSA-2023-0008)
VMware Workstation, Fusion is a hosted hypervisor that runs on x64 versions of Windows and Linux operating systems.
Affected Versions:
VMware Workstation Pro 17.x prior to 17.0.1
VMware Workstation Player 17.x prior to 17.0.1
VMware Fusion prior to 13.x prior to 13.0.1
QID Detection Logic (Authenticated) - Windows:
This QID checks for registry key "HKLM\SOFTWARE\VMware, Inc.\VMware Workstation" and value "InstallPath" to scan the/ check for file "vmware.exe". Then checks the version for this exe file on Windows Operating Systems
QID Detection Logic: (Authenticated) - Linux:
This QID executes the command "vmware-installer -l|grep vmware-workstation|awk '{print }'" and checks for the VMware Workstation version on Linux Operating Systems
QID Detection Logic: (Authenticated) - MacOS:
This QID checks installed apps on MacOs for the app "VMware Fusion.app". If the app is found, the QID checks for the VMware Workstation version on MacOS
A malicious attacker with access to a virtual machine that has a physical CD/DVD drive attached and configured to use a virtual SCSI controller may be able to exploit this vulnerability to execute code on the hypervisor from a virtual machine.
Refer to VMware advisory VMSA-2023-0008 for more information.
- VMSA-2023-0008 -
www.vmware.com/security/advisories/VMSA-2023-0008.html
CVEs related to QID 378447
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| VMSA-2023-0008 |
www.vmware.com/security/advisories/VMSA-2023-0008.html |