TTCSIRT-318.06.24.20: TT-CSIRT ADVISORY – VMWARE ESXI, WORKSTATION AND FUSION VULNERABILITIES

TTCSIRT-318.06.24.20: TT-CSIRT ADVISORY – VMWARE ESXI, WORKSTATION AND FUSION VULNERABILITIES

Multiple vulnerabilities exist in VMware ESXi, Workstation and Fusion. A malicious actor with local access to a virtual machine with 3D graphics enabled may be able to exploit this vulnerability to execute code on the hypervisor from a virtual machine.

There are however, workarounds, patches and updates available to remediate these vulnerabilities.

The Trinidad and Tobago Cyber Security Incident Response Team (TTCSIRT) encourages users and administrators to review the VMware link that follow for further review and apply the relevant workarounds, patches or updates:

https://www.vmware.com/security/advisories/VMSA-2020-0015.html