Guest Access Control Vulnerability in VMware Workstation and Fusion

Guest Access Control Vulnerability in VMware Workstation and Fusion

CVE-2017-4945 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

VMware Workstation (14.x and 12.x) and Fusion (10.x and 8.x) contain a guest access control vulnerability. This issue may allow program execution via Unity on locked Windows VMs. VMware Tools must be updated to 10.2.0 for each VM to resolve CVE-2017-4945. VMware Tools 10.2.0 is consumed by Workstation 14.1.0 and Fusion 10.1.0 by default.

Learn more about our Web Application Penetration Testing UK.