Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2024-22270

VMware Workstation and Fusion contain an information disclosure vulnerability in the Host Guest File Sharing (HGFS) functionality. A malicious actor with local administrative privileges on a virtual machine may be able to read privileged information contained in hypervisor memory from a virtual machine.

  • Published: May 14, 2024
  • Updated: Jun 28, 2025
  • CVE: CVE-2024-22270
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6
  • AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

No CWE or OWASP classifications available.

Software From Fixed in
vmware / workstation 17.0.0 17.5.2
vmware / fusion 13.0.0 13.5.2