The drag-and-drop (aka DnD) function in VMware Workstation Pro 12.x prior to 12.5.2 and VMware Workstation Player 12.x prior to 12.5.2 and VMware Fusion and Fusion Pro 8.x prior to 8.5.2 allows guest OS users to execute arbitrary code on the host OS or cause a denial of service (out-of-bounds memory access on the host OS) via unspecified vectors.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
vmware fusion_pro 8.1.1 |
||
vmware fusion_pro 8.5.0 |
||
vmware fusion 8.5.0 |
||
vmware fusion 8.5.1 |
||
vmware workstation_pro 12.0.0 |
||
vmware workstation_player 12.0.1 |
||
vmware fusion_pro 8.0.2 |
||
vmware fusion_pro 8.1.0 |
||
vmware fusion 8.1.0 |
||
vmware fusion 8.1.1 |
||
vmware workstation_pro 12.0.1 |
||
vmware workstation_pro 12.1.1 |
||
vmware workstation_pro 12.1.0 |
||
vmware fusion_pro 8.5.1 |
||
vmware fusion 8.0.0 |
||
vmware workstation_player 12.5.0 |
||
vmware workstation_player 12.5.1 |
||
vmware workstation_player 12.1.1 |
||
vmware workstation_player 12.1.0 |
||
vmware fusion_pro 8.0.0 |
||
vmware fusion_pro 8.0.1 |
||
vmware fusion 8.0.1 |
||
vmware fusion 8.0.2 |
||
vmware workstation_pro 12.5.0 |
||
vmware workstation_pro 12.5.1 |
||
vmware workstation_player 12.0.0 |
Vulmon