VMware has released a new security advisory addressing four critical vulnerabilities discovered in its virtualization products.

According to VMware’sadvisory, the security flaws affect ESXi, Workstation Pro/Player, Fusion Pro/Fusion, and Cloud Foundation.

However, skilled hackers could combine them to achieve a “critical” impact on vulnerable products.

VMware forced to patch dangerous vulnerabilities in discontinued products

The second issue is a use-after-free vulnerability in VMware’s UHCI USB controller (CVE-2024-22253).