VMware ESXi, Workstation and Fusion updates address use-after-free and privilege escalation vulnerabilities (CVE-2020-4004, CVE-2020-4005).
1. Impacted Products:
VMware ESXi VMware Workstation Pro / Player (Workstation) VMware Fusion Pro / Fusion (Fusion) VMware Cloud Foundation
2. Introduction Multiple vulnerabilities:
in VMware ESXi, Workstation and Fusion were privately reported to VMware. Updates are available to remediate these vulnerabilities in affected VMware products. 3a. Use-after-free vulnerability in XHCI USB controller (CVE-2020-4004) Description VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the XHCI USB controller.
VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.3.
Known Attack Vectors
A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine’s VMX process running on the host.
Resolution To remediate CVE-2020-4004 apply the patches listed in the ‘Fixed Version’ column of the ‘Response Matrix’ found below. Workarounds Workarounds for CVE-2020-4004 have been listed in the ‘Workarounds’ column of the ‘Response Matrix’ below.