VMware Patches Severe Security Flaws in Workstation and Fusion Products

14-May-24

VMware has patched four severe security vulnerabilities in its Workstation and Fusion products, affecting versions 17.x and 13.x respectively. These flaws include a use-after-free vulnerability in Bluetooth (CVE-2024-22267), a heap buffer-overflow vulnerability in Shader functionality (CVE-2024-22268), and two information disclosure vulnerabilities. Users are advised to apply the patches promptly and disable Bluetooth support and 3D acceleration as temporary measures.

Read More…