CVE-2024-38811
CVSS V2 None
CVSS V3 None
Description
VMware Fusion (13.x before 13.6) contains a code-execution vulnerability due to the usage of an insecure environment variable. A malicious actor with standard user privileges may exploit this vulnerability to execute code in the context of the Fusion application.
Overview
- CVE ID
- CVE-2024-38811
- Assigner
- vmware
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-09-03T09:47:28.120Z
- Last Modified Date
- 2024-09-03T13:44:05.634Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24939 |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-38811 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38811 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-09-04 13:16:09 | Added to TrackCVE |