CVE-2023-20872

Summary

VMware Workstation and Fusion contain an out-of-bounds read/write vulnerability in SCSI CD/DVD device emulation.

Affected Software

VendorProductVersion RangeStatus
n/aVMware Workstation Pro / Player (Workstation) and VMware FusionVMware Workstation (17.x) and VMware Fusion (13.x)affected

Weaknesses

  • Out-of-bounds read/write vulnerability

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References