Name of the Vulnerable Software and Affected Versions:

VMware ESXi, Workstation, and Fusion versions (affected versions not specified)

Description:

VMware ESXi, Workstation, and Fusion contain an integer-overflow vulnerability in the VMXNET3 virtual network adapter. A malicious actor with local administrative privileges on a virtual machine with a VMXNET3 virtual network adapter may exploit this issue to execute code on the host. Non-VMXNET3 virtual adapters are not affected. The vulnerability is related to a buffer overflow in the VMXNET3 virtual network adapter. Exploitation could allow an attacker to execute arbitrary code.

Recommendations:

At the moment, there is no information about a newer version that contains a fix for this vulnerability.