Severity Rating: HIGH
Software Affected
VMware Horizon Client for Windows versions prior to 5.4.3
VMware ESXi versions 6.5 and 6.7
VMware Workstation Pro / Player versions prior to 15.5.5
VMware Fusion Pro / Fusion versions prior to 11.5.5
Overview
Multiple vulnerabilities have been reported in VMware products which could
allow a local attacker to gain elevated privileges and access sensitive
information on a targeted system.
Description
1. Privilege Escalation Vulnerability ( CVE-2020-3961 )
This vulnerability exists in VMware Horizon Client for Windows due to
improper folder permission configuration and unsafe loading of libraries.
Successful exploitation of this vulnerability could allow an attacker with
local access to gain elevated privileges and run commands as any user on
the targeted system.
2. Out-of-bounds read Vulnerability ( CVE-2020-3960 )
This vulnerability exists in VMware due to an out-of-bounds read in NVMe
functionality.
Successful exploitation of this vulnerability could allow a local attacker
to read privileged information on the targeted system.
Solution
Update to patched versions as mentioned in the vendor advisory:
Vendor Information
VMWare
CVE Name
CVE-2020-3960
CVE-2020-3961
About Cert Advisory
We have created this blog to provide latest security advisory from the india cert for the security vulnerability, threats, attacks and patching required to mitigate any kind of cyber attacks.