—–BEGIN PGP SIGNED MESSAGE—–

Hash: SHA256

Privilege Escalation Vulnerability in VMware Fusion

Indian – Computer Emergency Response Team (https://www.cert-in.org.in)

Severity Rating: HIGH

Software Affected

VMware Fusion 25H2

Overview

A vulnerability has been reported in VMware Fusion, which could allow a local attacker to escalate privileges and gain root access on the affected system.

Target Audience:

Organizations and individuals using affected VMware Fusion.

Risk Assessment:

High risk of privilege escalation.

Impact Assessment:

Potential impact on confidentiality, integrity, and availability of the affected system, including complete system compromise.

Description

VMware provides virtualization software solutions that enable organizations to create and manage virtual machines (VMs).

The vulnerability exists due to a Time-of-Check Time-of-Use (TOCTOU) race condition in a SETUID binary within VMware Fusion. A local attacker with limited privileges can exploit this flaw to manipulate the execution flow and gain elevated privileges on the host system.

Successful exploitation of this vulnerability could allow the attacker to obtain root access, execute arbitrary commands with elevated privileges on the affected system.

Solution

Apply appropriate updates as mentioned:

https://techdocs.broadcom.com/us/en/vmware-cis/desktop-hypervisors/fusion-pro/26H1/release-notes/vmware-fusion-26h1-release-notes.html

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37454

References

 

https://techdocs.broadcom.com/us/en/vmware-cis/desktop-hypervisors/fusion-pro/26H1/release-notes/vmware-fusion-26h1-release-notes.html

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37454

CVE Name

CVE-2026-41702

– —

Thanks and Regards,

CERT-In

Incident Response Help Desk

e-mail: incident@cert-in.org.in

Phone: +91-11-22902657

Toll Free Number: 1800-11-4949

Toll Free Fax : 1800-11-6969

Web: http://www.cert-in.org.in

PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4

PGP Key information:

https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS

Postal address:

Indian Computer Emergency Response Team (CERT-In)

Ministry of Electronics and Information Technology

Government of India

Electronics Niketan

6, C.G.O. Complex

New Delhi-110 003

—–BEGIN PGP SIGNATURE—–

iQIzBAEBCAAdFiEE6r4Iam/Ey0c/KakL3jCgcSdcys8FAmoPHbUACgkQ3jCgcSdc

ys88Fw//cUdVAK9EUhdtsVDUL1MMmUZDbMUDaxXtgb9AlET6FYRl37dKRGK+Nx4e

i15B2lvYT9gR8UxdDEvlqjdh7E6myd2Yg75u5h/amZnMfSLDHRz9K0r6G7h7JQKd

nViXll21mubYTH4nlQNO0TR6rbIolBr952kCYrbjeQTpBLqBIba4Bxiei+bRtb3o

DkvWCPyQCWGFQJWP4uZdn7asOdh/vzfh8i+odTa9MqIl5eEawP7g293/WE88hIHk

9bOtfY5lqMLdbR3lyRfoTDDp68odUtSVx8FvS/YHVEyDQXp7+BlZkG3jKVlJiLto

OlXmclAlc/jWSGiFwux2uQ1vqQKne9HOswhndu1493tnH+6qJh4IIY/KQKiFogmf

a5T2KHV/bFKAcShxiHQaUtPIqAounHoXXqrjVakJwNvivFIGAAjzCGWY0Qa7C7N3

hiOaAYYyzPO2If2RK8cBUo0DQJZqSIRJVjaJS3UUIBxma2sngRq/blghgvUWuU0o

92JTWu6rRXKa5VPWZlWLieVSkOy3wyJBENrumQj5GUiuscVJnePW9be0tzhBRhLC

MjdOtcWUQnTrOHmXZjsKxoetoYFIG8MVQ3SVgcsco3Mjmkn6c1xpy4tBnpWFCx4e

9Ugka2Avpgjghk8GkWwL/icVrCyLwR47x0QWkfyanT8/nraXlZA=

=Vne+

—–END PGP SIGNATURE—–