CVE-2023-20871

Summary

VMware Fusion contains a local privilege escalation vulnerability. A malicious actor with read/write access to the host operating system can elevate privileges to gain root access to the host operating system.

Affected Software

VendorProductVersion RangeStatus
n/aVMware FusionVMware Fusion (13.x)affected

Weaknesses

  • VMware Fusion Raw Disk local privilege escalation vulnerability

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References