CVE-2023-20870

Summary

VMware Workstation and Fusion contain an out-of-bounds read vulnerability that exists in the functionality for sharing host Bluetooth devices with the virtual machine.

Affected Software

VendorProductVersion RangeStatus
n/aVMware Workstation Pro / Player (Workstation) and VMware FusionVMware Workstation (17.x) and VMware Fusion (13.x)affected

Weaknesses

  • Information disclosure vulnerability in bluetooth device-sharing functionality

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References