CVE-2023-20854
CVSS V2 None
CVSS V3 None
Description
VMware Workstation contains an arbitrary file deletion vulnerability. A malicious actor with local user privileges on the victim's machine may exploit this vulnerability to delete arbitrary files from the file system of the machine on which Workstation is installed.
Overview
- CVE ID
- CVE-2023-20854
- Assigner
- security@vmware.com
- Vulnerability Status
- Analyzed
- Published Version
- 2023-02-03T19:15:13
- Last Modified Date
- 2023-02-15T15:49:03
Weakness Enumerations
CPE Configuration (Product)
| CPE | Vulnerable | Operator | Version Start | Version End |
|---|---|---|---|---|
| AND | ||||
| cpe:2.3:a:vmware:workstation:17.0:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* | 0 | OR |
References
| Reference URL | Reference Tags |
|---|---|
| https://www.vmware.com/security/advisories/VMSA-2023-0003.html | Patch Release Notes Vendor Advisory |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-20854 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20854 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2023-04-17 07:11:36 | Added to TrackCVE | |||
| 2023-04-17 07:11:38 | Weakness Enumeration | new |