CVE-2020-3958 : Security Advisory and Response

VMware ESXi, VMware Workstation, and VMware Fusion are affected by a denial-of-service vulnerability in the shader functionality.

Understanding CVE-2020-3958

What is CVE-2020-3958?

CVE-2020-3958 is a denial-of-service vulnerability affecting VMware ESXi, VMware Workstation, and VMware Fusion.

The Impact of CVE-2020-3958

The vulnerability could allow attackers with non-administrative access to crash a virtual machine's vmx process, leading to a denial of service.

Technical Details of CVE-2020-3958

Vulnerability Description

The vulnerability exists in VMware ESXi (6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), VMware Workstation (15.x before 15.5.2), and VMware Fusion (11.x before 11.5.2).

Affected Systems and Versions

VMware ESXi 6.7 before ESXi670-202004101-SG
VMware ESXi 6.5 before ESXi650-202005401-SG
VMware Workstation 15.x before 15.5.2
VMware Fusion 11.x before 11.5.2

Exploitation Mechanism

Attackers with non-administrative access can exploit the vulnerability to crash a virtual machine's vmx process.

Mitigation and Prevention

Immediate Steps to Take

Apply the necessary security patches provided by VMware.
Monitor VMware's security advisories for updates.

Long-Term Security Practices

Regularly update VMware products to the latest versions.
Implement strong access controls to limit non-administrative access.

Patching and Updates

Ensure timely installation of security patches released by VMware.