Lucene search

Kaspersky LabKLA12098

HistoryJun 23, 2020 - 12:00 a.m.

KLA12098 Multiple vulnerabilities in VMware Workstation and Player

2020-06-2300:00:00

Kaspersky Lab

threats.kaspersky.com

8.2 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

8.1 High

AI Score

Confidence

High

4.6 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

53.7%

JSON

Multiple vulnerabilities were found in VMware Workstation and Player. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service.

Below is a complete list of vulnerabilities:

A out-of-bound read vulnerability in Shader Functionality can be exploited locally to cause denial of service.
A information leak vulnerability in the EHCI USB controller can be exploited locally to obtain sensitive information.
A heap overflow vulnerability in EHCI controller can be exploited locally to execute arbitrary code.
A use after free vulnerability in SVGA device can be exploited locally to execute arbitrary code.
A information leak vulnerability in the XHCI USB controller can be exploited locally to obtain sensitive information.
A out of bounds write vulnerability in xHCI controller can be exploited locally to cause denial of service or execute arbitrary code.
A heap overflow vulnerability in vmxnet3 can be exploited locally to obtain sensitive information.
A heap overflow vulnerability in SVGA device can be exploited locally to execute arbitrary code.
A use after free vulnerability in PVNVRAM can be exploited to obtain sensitive infromation.

Original advisories

VMSA-2020-0015

Related products

VMware-Workstation

VMware-Player

CVE list

CVE-2020-3970 warning

CVE-2020-3964 warning

CVE-2020-3966 critical

CVE-2020-3962 critical

CVE-2020-3965 high

CVE-2020-3968 critical

CVE-2020-3971 high

CVE-2020-3967 critical

CVE-2020-3969 critical

CVE-2020-3963 high

Solution

Update to the latest version

Download VMWare Workstation

Impacts

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.

Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.

Affected Products

VMware Workstation 15.x earlier than 15.5.5VMware Player 15.x earlier than 15.5.5

References

statistics.securelist.com/

threats.kaspersky.com/en/product/VMware-Player/

threats.kaspersky.com/en/product/VMware-Workstation/

www.vmware.com/security/advisories/VMSA-2020-0015.html

8.2 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

8.1 High

AI Score

Confidence

High

4.6 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

53.7%

JSON

Related for KLA12098