VMware Fusion 11.5.6

CPE Details

VMware Fusion 11.5.6
vmware
fusion
11.5.6
2020-10-21
13h08 +00:00
2021-06-02
10h00 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:vmware:fusion:11.5.6:*:*:*:*:*:*:*

Informations

Vendor

vmware

Product

fusion

Version

11.5.6

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2020-3999 2020-12-21 14h14 +00:00 VMware ESXi (7.0 prior to ESXi70U1c-17325551), VMware Workstation (16.x prior to 16.0 and 15.x prior to 15.5.7), VMware Fusion (12.x prior to 12.0 and 11.x prior to 11.5.7) and VMware Cloud Foundation contain a denial of service vulnerability due to improper input validation in GuestInfo. A malicious actor with normal user privilege access to a virtual machine can crash the virtual machine's vmx process leading to a denial of service condition.
6.5
Medium
CVE-2020-4004 2020-11-20 18h06 +00:00 VMware ESXi (7.0 before ESXi70U1b-17168206, 6.7 before ESXi670-202011101-SG, 6.5 before ESXi650-202011301-SG), Workstation (15.x before 15.5.7), Fusion (11.x before 11.5.7) contain a use-after-free vulnerability in the XHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host.
8.2
High
CVE-2020-3980 2020-09-16 14h13 +00:00 VMware Fusion (11.x) contains a privilege escalation vulnerability due to the way it allows configuring the system wide path. An attacker with normal user privileges may exploit this issue to trick an admin user into executing malicious code on the system where Fusion is installed.
6.7
Medium