CVE-2020-3959 vulnerability in VMware Products
Published on May 29, 2020

VMware ESXi (6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), VMware Workstation (15.x before 15.1.0) and VMware Fusion (11.x before 11.1.0) contain a memory leak vulnerability in the VMCI module. A malicious actor with local non-administrative access to a virtual machine may be able to crash the virtual machine's vmx process leading to a partial denial of service.

NVD

Products Associated with CVE-2020-3959

Want to know whenever a new CVE is published for VMware products? stack.watch will email you.

VMware Fusion

VMware Workstation

VMware ESXi

Affected Versions

VMware ESXi:

Version 6.7 before ESXi670-202004101-SG is affected.
Version 6.5 before ESXi650-202005401-SG is affected.

VMware Workstation:

Version 15.x before 15.1.0 is affected.

VMware Fusion:

Version 11.x before 11.1.0 is affected.

Exploit Probability

EPSS

0.10%

Percentile

26.67%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-3959 vulnerability in VMware ProductsPublished on May 29, 2020

Products Associated with CVE-2020-3959

Affected Versions

Exploit Probability

CVE-2020-3959 vulnerability in VMware Products
Published on May 29, 2020