VYPR
Unrated severityNVD Advisory· Published Oct 20, 2023· Updated Aug 2, 2024

Information disclosure vulnerability in bluetooth device-sharing functionality

CVE-2023-34044

Description

VMware Workstation( 17.x prior to 17.5) and Fusion(13.x prior to 13.5) contain an out-of-bounds read vulnerability that exists in the functionality for sharing host Bluetooth devices with the virtual machine. A malicious actor with local administrative privileges on a virtual machine may be able to read privileged information contained in hypervisor memory from a virtual machine.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • VMware/Fusionllm-fuzzy2 versions
    <13.5+ 1 more
    • (no CPE)range: <13.5
    • (no CPE)range: 13.x
  • VMware/Workstationllm-fuzzy2 versions
    <17.5+ 1 more
    • (no CPE)range: <17.5
    • (no CPE)range: 17.x

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.