CVE-2020-3980

Name of the Vulnerable Software and Affected Versions: VMware Fusion versions 11.x

Description: The issue is related to a privilege escalation vulnerability due to the way VMware Fusion configures the system-wide path. An attacker with normal user privileges may exploit this issue to trick an admin user into executing malicious code on the system where Fusion is installed. The vulnerability is associated with errors in privilege management, which can allow an attacker to elevate their privileges.

Recommendations: For VMware Fusion version 11.x, at the moment, there is no information about a newer version that contains a fix for this vulnerability.