VMware Fusion 10.x < 10.1.3 Speculative Execution Side Channel Vulnerability (Foreshadow) (VMSA-2018-0020) (macOS)
Medium Nessus Plugin ID 111758
SynopsisA virtualization application installed on the remote macOS or Mac OS X host is affected by a speculative execution side channel vulnerability.
DescriptionThe version of VMware Fusion installed on the remote macOS or Mac OS X host is 10.x prior to 10.1.3. It is, therefore, vulnerable to a speculative execution side channel attack known as L1 Terminal Fault (L1TF). An attacker who successfully exploited L1TF may be able to read privileged data across trust boundaries.
SolutionUpgrade to VMware Fusion version 10.1.3 or later.