The host is installed with VMware Fusion 11.x before 11.5.6 and is prone to an out-of-bounds read vulnerability. A flaw is present in the application, which fails to handle a time-of-check time-of-use issue in ACPI device. Successful exploitation may allow attackers with administrative access to a virtual machine to leak memory from the vmx process.