"VMware Addresses Critical Zero-Day Exploit in Workstation and Fusion Software"
Originally Published 2 years ago — by BleepingComputer
VMware has released security updates to fix two zero-day vulnerabilities that were part of an exploit chain demonstrated by security researchers at the Pwn2Own Vancouver 2023 hacking contest. The vulnerabilities could be chained to gain code execution on systems running unpatched versions of VMware's Workstation and Fusion software hypervisors. VMware has also addressed two more security flaws affecting its hosted hypervisors and shared temporary workarounds for admins who cannot immediately deploy patches.