VMware Workstation and Fusion contain a heap buffer-overflow vulnerability in the Shader functionality. A malicious actor with non-administrative access to a virtual machine with 3D graphics enabled may be able to exploit this vulnerability to create a denial of service condition.
References
Configurations
History
27 Mar 2025, 15:15
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24280 - Vendor Advisory | |
| First Time |
Apple macos
Microsoft windows Vmware workstation Apple Microsoft Vmware Vmware fusion |
|
| CWE | CWE-787 | |
| CPE | cpe:2.3:a:vmware:workstation:*:*:*:*:*:*:*:* cpe:2.3:a:vmware:fusion:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* |
21 Nov 2024, 08:55
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24280 - |
14 May 2024, 19:18
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-05-14 16:16
Updated : 2025-03-27 15:15
NVD link : CVE-2024-22268
Mitre link : CVE-2024-22268
CVE.ORG link : CVE-2024-22268
JSON object : View
Products Affected
vmware
- fusion
- workstation
microsoft
- windows
apple
- macos
CWE
CWE-787
Out-of-bounds Write