Use-after-free vulnerability in VMware Fusion - VMSA-2020-0004 (Mac OS)ID: oval:org.secpod.oval:def:72538 | Date: (C)2021-05-27 (M)2022-10-10 |
Class: PATCH | Family: macos |
The host is missing a critical severity security update according to advisory VMSA-2020-0015 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to handle an issue in the vmnetdhcp. Successful exploitation of this issue may lead to code execution on the host from the guest or may allow attackers to create a denial-of-service condition of the vmnetdhcp service running on the host machine.
Platform: |
Apple Mac OS 11 |
Apple Mac OS X 10.11 |
Apple Mac OS X 10.12 |
Apple Mac OS X 10.13 |
Apple Mac OS X 10.14 |
Apple Mac OS X 10.15 |