VMware Fixes Critical Vulnerabilities in ESXi, Workstation and Fusion

VMware discharged various updates today to address five basic seriousness vulnerabilities in the VMware vSphere ESXi, VMware Workstation Pro/Player, and VMware Fusion Pro/Fusion, two of which were utilized in their demos by Fluoroacetate amid the Pwn2Own 2019 Security Contest.

The initial two effect VMware ESXi, Workstation, and Fusion, and were accounted for by the Fluoroacetate group (Amat Cama and Richard Zhu) after the first and second day of the current year's Pwn2Own Security Contest.

Fixed vulnerabilities could prompt code execution and DoS assaults

All the more precisely, they utilized an outside the field of play read/compose powerlessness (presently followed as CVE-2019-5518) and a Time-of-check Time-of-utilization (TOCTOU) defenselessness affecting the virtual USB 1.1 UHCI (Universal Host Controller Interface) (followed as CVE-2019-5519) to effectively execute code on the host from the visitor.

Another outside the field of play compose basic seriousness powerlessness revealed by Zhangyanyu of Chaitin Tech in the e1000 virtual system connector (CVE-2019-5524) impacts VMware Workstation and Fusion, and may empower a visitor to execute code on the host OS code execution.

VMware Workstation and Fusion were additionally observed to be helpless against an imperative seriousness "too far out compose weakness in the e1000 and e1000e virtual system connectors" announced by ZhanluLab (followed as CVE-2019-5515), driving "to code execution on the host from the visitor yet it is bound to result in a disavowal of administration of the visitor."

An unauthenticated APIs security issue brought about by unauthenticated APIs open to get to through a web attachment was found in VMware Fusion, a defect that would enable potential assailants to trap a host client to run JavaScript code to "perform unapproved works on the visitor machine where VMware Tools is introduced," driving code execution on visitor machines.

Programming refreshes accessible for every single defenseless form

As indicated by VMware's VMSA-2019-0005 security warning, this last issue was accounted for by CodeColorist and Csaba Fitzl, and it is at present being followed as CVE-2019-5514.

To address all these basic and vital seriousness vulnerabilities, VMware has discharged patches for ESXi 6.0.0, 6.5.0, and 6.7.0, and the VMware Workstation 15.0.4 and 14.1.7 (Pro and Player) and Fusion 11.0.3 and 10.1.6 programming refreshes.

VMware likewise discharged a security warning specifying a basic seriousness Remote Session Hijack weakness affecting VMware vCloud Director for Service Providers (vCD) adaptation 9.5.x.

This security issue is followed as CVE-2019-5523, was fixed in the vCD 9.5.0.3 discharge, and it was accounted for by Tyler Flaagan, Eric Holm, Andrew Kramer, and Logan Stratton of Dakota State University.