CVE-2026-41702

Published May 15, 2026

Last updated 8 days ago

CVSS high 7.8

Overview

Description
VMware Fusion contains a TOCTOU (Time-of-check Time-of-use) vulnerability that occurs during an operation performed by a SETUID binary. A malicious actor with local non-administrative user privileges may exploit this vulnerability to escalate privileges to root on the system where Fusion is installed.
Source
security@vmware.com
NVD status
Analyzed
Products
fusion

Risk scores

CVSS 3.1

Type
Primary
Base score
7
Impact score
5.9
Exploitability score
1
Vector string
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity
HIGH

Weaknesses

security@vmware.com
CWE-367

Social media

Hype score
Not currently trending

  1. VMware Fusion の脆弱性 CVE-2026-41702 が FIX:root 権限奪取の恐れ https://t.co/jh77VrTneY VMware Fusion の脆弱性 CVE-2026-41702 は、プログラムが安全性を確認するタイミングの隙を突かれてしまう “Time-of-Check Time-of-Use”

    @iototsecnews

    22 May 2026

    82 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  2. 21:57 UTC: CVE-2026-41702 disclosed. 🏴‍☠️ I can finally share a VMware 0day I discovered that led to CVE-2026-41702 (LPE as root). Funny enough, I found the

    @lyrie_ai

    19 May 2026

    43 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  3. ルートアクセス競争:TOCTOUの脆弱性(CVE-2026-41702)がVMware Fusionに影響 Root Access Race: TOCTOU Vulnerability (CVE-2026-41702) Hits VMware Fusion #DailyCyberSecurity (May 15) https://t.co/Bc6zEx1leK

    @foxbook

    18 May 2026

    290 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. Root Access Race: TOCTOU Vulnerability (CVE-2026-41702) Hits VMware Fusion https://t.co/uLKKJ9hk3s The post Root Access Race: TOCTOU Vulnerability (CVE-2026-41702) Hits VMware Fusion appeared first on Daily CyberSecurity. Related posts: Linux Privilege Escalation: “Pack2TheR

    @f1tym1

    15 May 2026

    61 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. VMware Fusionでローカル権限昇格が可能になる脆弱性CVE-2026-41702が修正された。一般ユーザーからroot権限奪取の恐れがある。 Broadcomによれば、CVE-2026-41702はSETUIDバイナリ処理中に発生するTOCTOU(Time-of-Check

    @yousukezan

    14 May 2026

    2245 Impressions

    6 Retweets

    12 Likes

    4 Bookmarks

    0 Replies

    0 Quotes

Configurations

Related CVEs

  1. A maliciously crafted HTML payload, stored in a design name and exported to CSV, can trigger a Stored Cross-site Scripting (XSS) vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read local files or execute arbitrary code in the context of the current process.CVE-2026-4345
  2. A maliciously crafted HTML payload in an assembly variant name, when displayed during the delete confirmation dialog and clicked by a user, can trigger a Stored Cross-site Scripting (XSS) vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read local files or execute arbitrary code in the context of the current process.CVE-2026-4369
  3. A maliciously crafted HTML payload in a component name, when displayed during the delete confirmation dialog and clicked by a user, can trigger a Stored Cross-site Scripting (XSS) vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read local files or execute arbitrary code in the context of the current process.CVE-2026-4344
  4. A maliciously crafted HTML payload, stored in a component’s description and clicked by a user, can trigger a Stored Cross-site Scripting (XSS) vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read local files or execute arbitrary code in the context of the current process.CVE-2026-0535
  5. A maliciously crafted HTML payload, stored in a part’s attribute and clicked by a user, can trigger a Stored Cross-site Scripting (XSS) vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read local files or execute arbitrary code in the context of the current process.CVE-2026-0534

References

Sources include official advisories and independent security research.