Description

VMware Workstation contains an arbitrary file deletion vulnerability. A malicious actor with local user privileges on the victim's machine may exploit this vulnerability to delete arbitrary files from the file system of the machine on which Workstation is installed.

Related CPE's

a

vmware

workstation

17.0

Vulnerable

o

microsoft

windows

-

References

https://www.vmware.com/security/advisories/VMSA-2023-0003.html

PatchRelease NotesVendor Advisory

Weaknesses

[email protected]

Primary
CWE-269

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H

8.4 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2023-02-03T19:15:13.733

1 year ago

Last modified

2023-02-15T15:49:03.963

1 year ago