Blog
VMware has recently released security patches to fix four vulnerabilities affecting ESXi, Workstation, and Fusion. Two of these flaws, tracked as CVE-2024-22252 and CVE-2024-22253, are considered critical and could result in code execution. The vulnerabilities are identified as use-after-free bugs in the XHCI USB controller with CVSS scores of 9.3 for Workstation and Fusion, and 8.4 for ESXi systems.
