VMware ESXi (6.7 before ESXi670-201908101-SG and 6.5 before ESXi650-201910401-SG), Workstation (15.x prior to 15.5.0) and Fusion (11.x prior to 11.5.0) contain a denial-of-service vulnerability in the shader functionality. Successful exploitation of this issue may allow attackers with normal user privileges to create a denial-of-service condition on their own VM. Exploitation of this issue require an malicious user to have access to a virtual machine with 3D graphics enabled. It is not enabled by default on ESXi and is enabled by default on Workstation and Fusion.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vmware fusion |
||
vmware workstation |
||
vmware esxi 6.5 |
||
vmware esxi 6.7 |