Lucene search
HistoryApr 25, 2023 - 10:15 p.m.
CVE-2023-20869
vmware
workstation
fusion
buffer-overflow
vulnerability
bluetooth
devices
CVSS3
8.2
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
AI Score
8.2
Confidence
High
EPSS
0.002
Percentile
53.2%
VMware Workstation (17.x) and VMware Fusion (13.x) contain a stack-based buffer-overflow vulnerability that exists in the functionality for sharing host Bluetooth devices with the virtual machine.
Affected configurations
Node
vmwarefusionRange13.0.0–13.0.2
ORvmwareworkstationRange17.0.0–17.0.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| vmware | fusion | * | cpe:2.3:a:vmware:fusion:*:*:*:*:*:*:*:* |
| vmware | workstation | * | cpe:2.3:a:vmware:workstation:*:*:*:*:*:*:*:* |
Related
zdi
zdi
cvelist
cvelist
CVE-2023-20869
2023-04-25 00:00:00
prion
prion
Stack overflow
2023-04-25 22:15:00
cve
cve
CVE-2023-20869
2023-04-25 22:15:09
kaspersky
kaspersky
KLA49049 Multiple vulnerabilities in VMware Workstation
2023-04-25 00:00:00
malwarebytes
malwarebytes
Update now: Critical flaw in VMWare Fusion and VMWare Workstation
2023-04-28 00:45:00
vmware
vmware
nessus
nessus
VMware Fusion 13.0.x < 13.0.2 Multiple Vulnerabilities (VMSA-2023-0008)
2023-04-25 00:00:00
VMware Workstation 17.0.x < 17.0.2 Multiple Vulnerabilities (VMSA-2023-0008)
2023-04-25 00:00:00
thn
thn
VMware Releases Critical Patches for Workstation and Fusion Software
2023-04-26 07:05:00
CVSS3
8.2
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
AI Score
8.2
Confidence
High
EPSS
0.002
Percentile
53.2%
Related for NVD:CVE-2023-20869