Vulnerability Database

296,733

Total vulnerabilities in the database

CVE-2023-20854

VMware Workstation contains an arbitrary file deletion vulnerability. A malicious actor with local user privileges on the victim's machine may exploit this vulnerability to delete arbitrary files from the file system of the machine on which Workstation is installed.

Published: Feb 3, 2023
Updated: Apr 14, 2023
CVE: CVE-2023-20854
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.4
AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H

CWEs:

CWE-269

Affected Software
References

Software	From	Fixed in
vmware / workstation	17.0	17.0.x

https://www.vmware.com/security/advisories/VMSA-2023-0003.html

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo