CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-34044

VMware Workstation( 17.x prior to 17.5) and Fusion(13.x prior to 13.5) contain an out-of-bounds read vulnerability that exists in the functionality for sharing host Bluetooth devices with the virtual machine. A malicious actor with local administrative privileges on a virtual machine may be able to read privileged information contained in hypervisor memory from a virtual machine.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 10.8%

CVSS Severity

CVSS v3 Score 7.1

References

Products affected by CVE-2023-34044

Vmware » Fusion » Version: 13.0.0

cpe:2.3:a:vmware:fusion:13.0.0
Vmware » Fusion » Version: 13.0.1

cpe:2.3:a:vmware:fusion:13.0.1
Vmware » Fusion » Version: 13.0.2

cpe:2.3:a:vmware:fusion:13.0.2
Vmware » Workstation » Version: 17.0.0

cpe:2.3:a:vmware:workstation:17.0.0
Vmware » Workstation » Version: 17.0.1

cpe:2.3:a:vmware:workstation:17.0.1
Vmware » Workstation » Version: 17.0.2

cpe:2.3:a:vmware:workstation:17.0.2
Apple » Mac Os X » Version: N/A

cpe:2.3:o:apple:mac_os_x:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-34044

Products

Pricing

Contact Us