Updates have been issued by VMware to resolve critical security vulnerabilities impacting its ESXi, Cloud Foundation, Fusion, and Workstation offerings, according to Security Affairs.
Most severe of the addressed flaws were a pair of use-after-free issues in the XHCI USB and UHCI USB controllers, tracked as CVE-2024-22252 and CVE-2024-22253, respectively, said VMware in its advisory. Both vulnerabilities could be leveraged by threat actors with local admin privileges to facilitate code…