CVE-2020-3957Time-of-check Time-of-use (TOCTOU) Race Condition in Vmware Fusion

CWE-367Time-of-check Time-of-use (TOCTOU) Race ConditionCWE-269Improper Privilege Management4 documents4 sources
Severity
7.0HIGHNVD
EPSS
0.1%
top 80.26%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Vmware FusionVmware Horizon ClientVmware Remote Console+3 more
Timeline
PublishedMay 29
Latest updateMay 24

Description

VMware Fusion (11.x before 11.5.5), VMware Remote Console for Mac (11.x and prior) and VMware Horizon Client for Mac (5.x and prior) contain a local privilege escalation vulnerability due to a Time-of-check Time-of-use (TOCTOU) issue in the service opener. Successful exploitation of this issue may allow attackers with normal user privileges to escalate their privileges to root on the system where Fusion, VMRC and Horizon Client are installed.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.0 | Impact: 5.9

Affected Packages6 packages

CVEListV5vmware/vmware_horizon_client_for_mac5.x and prior
NVDvmware/fusion11.0.011.5.5
CVEListV5vmware/vmware_fusion11.x before 11.5.5

🔴Vulnerability Details

2
GHSA
GHSA-jj4f-vfw3-qv39: VMware Fusion (112022-05-24
CVEList
CVE-2020-3957: VMware Fusion (112020-05-29

📋Vendor Advisories

1
VMware
VMware ESXi, Workstation, Fusion, VMware Remote Console and Horizon Client updates address multiple security vulnerabilities (CVE-2020-3957, CVE-2020-3958, CVE-2020-3959)2020-05-28