Lucene search
VmwareCVELIST:CVE-2020-3964HistoryJun 25, 2020 - 2:51 p.m.
CVE-2020-3964
2020-06-2514:51:48
vmware
www.cve.org
4
VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202006401-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x before 15.5.2), and Fusion (11.x before 11.5.2) contain an information leak in the EHCI USB controller. A malicious actor with local access to a virtual machine may be able to read privileged information contained in the hypervisor’s memory. Additional conditions beyond the attacker’s control need to be present for exploitation to be possible.
CNA Affected
[
{
"product": "VMware ESXi",
"vendor": "VMware",
"versions": [
{
"status": "affected",
"version": "7.0 before ESXi_7.0.0-1.20.16321839"
},
{
"status": "affected",
"version": "6.7 before ESXi670-202006401-SG"
},
{
"status": "affected",
"version": "6.5 before ESXi650-202005401-SG"
}
]
},
{
"product": "Workstation",
"vendor": "VMware",
"versions": [
{
"status": "affected",
"version": "15.x before 15.5.2"
}
]
},
{
"product": "Fusion",
"vendor": "VMware",
"versions": [
{
"status": "affected",
"version": "11.x before 11.5.2"
}
]
}
]Related
cve
cve
CVE-2020-3964
2020-06-25 15:15:11
nvd
nvd
CVE-2020-3964
2020-06-25 15:15:11
prion
prion
Design/Logic Flaw
2020-06-25 15:15:00
zdt
zdt
VMware ESXi Use-After-Free / Out-Of-Bounds Access Vulnerability
2020-07-19 00:00:00
kaspersky
kaspersky
KLA12098 Multiple vulnerabilities in VMware Workstation and Player
2020-06-23 00:00:00
nessus
nessus
