Vulnerability Details CVE-2026-41702
VMware Fusion contains a TOCTOU (Time-of-check Time-of-use) vulnerability that occurs during an operation performed by a SETUID binary. A malicious actor with local non-administrative user privileges may exploit this vulnerability to escalate privileges to root on the system where Fusion is installed.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 13.3%
CVSS Severity
CVSS v3 Score 7.8
Products affected by CVE-2026-41702
-
cpe:2.3:a:vmware:fusion:-
-
cpe:2.3:a:vmware:fusion:1.1.1
-
cpe:2.3:a:vmware:fusion:10.0
-
cpe:2.3:a:vmware:fusion:10.0.0
-
cpe:2.3:a:vmware:fusion:10.0.1
-
cpe:2.3:a:vmware:fusion:10.1.0
-
cpe:2.3:a:vmware:fusion:10.1.1
-
cpe:2.3:a:vmware:fusion:10.1.2
-
cpe:2.3:a:vmware:fusion:10.1.3
-
cpe:2.3:a:vmware:fusion:10.1.4
-
cpe:2.3:a:vmware:fusion:10.1.5
-
cpe:2.3:a:vmware:fusion:10.1.6
-
cpe:2.3:a:vmware:fusion:11.0
-
cpe:2.3:a:vmware:fusion:11.0.0
-
cpe:2.3:a:vmware:fusion:11.0.1
-
cpe:2.3:a:vmware:fusion:11.0.2
-
cpe:2.3:a:vmware:fusion:11.0.3
-
cpe:2.3:a:vmware:fusion:11.1.0
-
cpe:2.3:a:vmware:fusion:11.1.1
-
cpe:2.3:a:vmware:fusion:11.5.0
-
cpe:2.3:a:vmware:fusion:11.5.1
-
cpe:2.3:a:vmware:fusion:11.5.2
-
cpe:2.3:a:vmware:fusion:11.5.3
-
cpe:2.3:a:vmware:fusion:11.5.5
-
cpe:2.3:a:vmware:fusion:11.5.6
-
cpe:2.3:a:vmware:fusion:11.5.7
-
cpe:2.3:a:vmware:fusion:12.0.0
-
cpe:2.3:a:vmware:fusion:12.1.0
-
cpe:2.3:a:vmware:fusion:12.1.1
-
cpe:2.3:a:vmware:fusion:12.1.2
-
cpe:2.3:a:vmware:fusion:12.2.5
-
cpe:2.3:a:vmware:fusion:13.0.0
-
cpe:2.3:a:vmware:fusion:13.0.1
-
cpe:2.3:a:vmware:fusion:13.0.2
-
cpe:2.3:a:vmware:fusion:13.5
-
cpe:2.3:a:vmware:fusion:13.5.1
-
cpe:2.3:a:vmware:fusion:13.5.2
-
cpe:2.3:a:vmware:fusion:13.6
-
cpe:2.3:a:vmware:fusion:13.6.1
-
cpe:2.3:a:vmware:fusion:13.6.2
-
cpe:2.3:a:vmware:fusion:13.6.3
-
cpe:2.3:a:vmware:fusion:3.1
-
cpe:2.3:a:vmware:fusion:3.1.1
-
cpe:2.3:a:vmware:fusion:3.1.2
-
cpe:2.3:a:vmware:fusion:4.0
-
cpe:2.3:a:vmware:fusion:4.0.1
-
cpe:2.3:a:vmware:fusion:4.0.2
-
cpe:2.3:a:vmware:fusion:4.1
-
cpe:2.3:a:vmware:fusion:4.1.1
-
cpe:2.3:a:vmware:fusion:4.1.2
-
cpe:2.3:a:vmware:fusion:4.1.3
-
cpe:2.3:a:vmware:fusion:4.1.4
-
cpe:2.3:a:vmware:fusion:5.0
-
cpe:2.3:a:vmware:fusion:5.0.1
-
cpe:2.3:a:vmware:fusion:5.0.2
-
cpe:2.3:a:vmware:fusion:7.0
-
cpe:2.3:a:vmware:fusion:7.1
-
cpe:2.3:a:vmware:fusion:7.1.1
-
cpe:2.3:a:vmware:fusion:8.0
-
cpe:2.3:a:vmware:fusion:8.0.0
-
cpe:2.3:a:vmware:fusion:8.0.1
-
cpe:2.3:a:vmware:fusion:8.0.2
-
cpe:2.3:a:vmware:fusion:8.1
-
cpe:2.3:a:vmware:fusion:8.1.0
-
cpe:2.3:a:vmware:fusion:8.1.1
-
cpe:2.3:a:vmware:fusion:8.1.4
-
cpe:2.3:a:vmware:fusion:8.5
-
cpe:2.3:a:vmware:fusion:8.5.0
-
cpe:2.3:a:vmware:fusion:8.5.1
-
cpe:2.3:a:vmware:fusion:8.5.10
-
cpe:2.3:a:vmware:fusion:8.5.2
-
cpe:2.3:a:vmware:fusion:8.5.3
-
cpe:2.3:a:vmware:fusion:8.5.4
-
cpe:2.3:a:vmware:fusion:8.5.5
-
cpe:2.3:a:vmware:fusion:8.5.6
-
cpe:2.3:a:vmware:fusion:8.5.7
-
cpe:2.3:a:vmware:fusion:8.5.8
-
cpe:2.3:a:vmware:fusion:8.5.9