Severity
Medium
Analysis Summary
CVE-2024-22251
VMware Workstation and Fusion could allow a local attacker to obtain sensitive information, caused by an out-of-bounds read in the USB CCID. An attacker could exploit this vulnerability to obtain sensitive information and use this information to launch further attacks against the affected system.
Impact
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2024-22251
Affected Vendors
VMware
Affected Products
- VMware Workstation 17
- VMware Fusion 13
Remediation
Refer to VMware Security Advisory for patch, upgrade or suggested workaround information.