CVE-2020-3988 — Out-of-bounds Read in Vmware Horizon Client

CWE-125 — Out-of-bounds Read4 documents4 sources

Severity

6.1MEDIUMNVD

EPSS

0.0%

top 85.22%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Vmware Horizon Client Vmware Workstation Player Vmware Workstation PRO

Timeline

PublishedSep 16

Latest updateMay 24

Description

VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (JPEG2000 parser). A malicious actor with normal access to a virtual machine may be able to exploit these issues to create a partial denial-of-service condition or to leak memory from TPView process running on the system where Workstation or Horizon Client for Windows is installed.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:LExploitability: 1.8 | Impact: 4.2

Affected Packages3 packages

▶NVDvmware/horizon_client5.0.0 — 5.4.4

▶NVDvmware/workstation_pro15.0.0 — 16.0.0

▶NVDvmware/workstation_player15.0.0 — 16.0.0

🔴Vulnerability Details

GHSA

GHSA-xf5g-q7vm-4fg3: VMware Workstation (15↗2022-05-24

▶

CVEList

CVE-2020-3988: VMware Workstation (15↗2020-09-16

▶

📋Vendor Advisories

VMware

VMware Workstation, Fusion and Horizon Client updates address multiple security vulnerabilities (CVE-2020-3980, CVE-2020-3986, CVE-2020-3987, CVE-2020-3988, CVE-2020-3989, CVE-2020-3990)↗2020-09-14

▶