According to developers, the breach involves products such as ESX Server, Workstation, Fusion and View.
According to the post of developers of virtualization software from VMware, in products such companies as ESX Server, Workstation, Fusion and View a dangerous vulnerability was eliminated.
The flaw allows local users to gain escalated privileges on the target operating system. At the moment, according to VMware, appropriate security patch is already available.
«VMware would like to thank Derek Soedera (Derek Soeder) of Cylance, Inc. and Constantine Korchinsky of Microsoft for reporting this problem “- says the developer.
The experts also noted that the vulnerability exists in the communication interface of the virtual machine (virtual Machine Communication interface, VMCI) vmci.sys driver and applies to both the parent and the guest system based on Windows.
VMware users should immediately install security updates.