<\/div>\n

VMware fixed four flaws in its Workstation and Fusion desktop hypervisors, including three zero-days exploited at the Pwn2Own Vancouver 2024<\/h2>\n\n\n\n

VMware addressed four vulnerabilities in its Workstation and Fusion desktop hypervisors, including three zero-day flaws demonstrated at the Pwn2Own Vancouver 2024<\/a>.<\/p>\n\n\n\n

Below are descriptions of the flaws addressed by the virtualization giant<\/p>\n\n\n\n

\n
• CVE-2024-22267<\/strong>\u00a0(CVSS score: 9.3) – A use-after-free vulnerability in the Bluetooth device. A threat actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine’s VMX process running on the host.<\/gwmw><\/gwmw><\/gwmw><\/li>\n\n\n\n
• CVE-2024-22268<\/strong>\u00a0(CVSS score: 7.1) – A heap buffer-overflow vulnerability in the Shader functionality. A threat actor with non-administrative access to a virtual machine with 3D graphics enabled may be able to exploit this vulnerability to create a denial of service condition. <\/li>\n\n\n\n
• CVE-2024-22269<\/strong>\u00a0(CVSS score: 7.1) – An information disclosure vulnerability in the Bluetooth device. A threat actor with local administrative privileges\u00a0on a virtual machine may be able to read privileged information contained in hypervisor memory from a virtual machine.<\/gwmw><\/li>\n\n\n\n
• CVE-2024-22270<\/strong>\u00a0(CVSS score: 7.1) – An information disclosure vulnerability in the Host Guest File Sharing (HGFS) functionality. A malicious actor with local administrative privileges\u00a0on a virtual machine may be able to read privileged information contained in hypervisor memory from a virtual machine.<\/gwmw><\/gwmw><\/gwmw><\/li>\n<\/ul>\n\n\n\n

  STAR Labs SG and Theori demonstrated these vulnerabilities during the Pwn2Own hacking contest in March 2024.<\/gwmw><\/gwmw><\/p>\n\n\n\n

  “VMware would like to thank\u00a0Gwangun Jung (@pr0ln) & Junoh Lee (@bbbig12) of Theori (@theori_io)\u00a0and\u00a0STAR Labs SG\u00a0working with the Pwn2Own 2024 Security Contest for independently reporting this issue to us.” reads<\/a> the advisory.<\/gwmw><\/gwmw><\/p>\n\n\n\n

  Follow me on Twitter: @securityaffairs<\/strong><\/a> and Facebook<\/strong><\/a> and Mastodon<\/a><\/p>\n\n\n\n

  Pierluigi Paganini<\/strong><\/a><\/p>\n\n\n\n

  (<\/strong>SecurityAffairs<\/strong><\/a>\u00a0\u2013<\/strong>\u00a0hacking, zero-day)<\/strong><\/p>\n\n\n\n

  <\/gwmw><\/p>\n","protected":false},"excerpt":{"rendered":"

  VMware fixed four flaws in its Workstation and Fusion desktop hypervisors, including three zero-days exploited at the Pwn2Own Vancouver 2024 VMware addressed four vulnerabilities in its Workstation and Fusion desktop hypervisors, including three zero-day flaws demonstrated at the Pwn2Own Vancouver 2024. Below are descriptions of the flaws addressed by the virtualization giant The vendor also […]<\/p>\n","protected":false},"author":1,"featured_media":116235,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[3323,5],"tags":[4112,9508,9506,10918,687,14972,841,1533,5034],"class_list":["post-163152","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-breaking-news","category-hacking","tag-hacking","tag-hacking-news","tag-information-security-news","tag-it-information-security","tag-pierluigi-paganini","tag-pwn2own-vancouver-2024","tag-security-affairs","tag-security-news","tag-vmware"],"yoast_head":"\n

  The vendor also provided temporary workarounds, such as disabling Bluetooth support and 3D acceleration, until patches can be applied to address vulnerabilities like CVE-2024-22267, CVE-2024-22269, and CVE-2024-22270. The company doesn’t provide any mitigations to address CVE-2024-22270.<\/a><\/p>\n\n\n\n