View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
January 27, 2020

VMware Warns Over AMD Driver Vulnerabilities

Get patching...

By CBR Staff Writer

Security researchers at Cisco Talos say they have identified a range of serious vulnerabilities in AMD firmware that could be remotely exploited by a non-authenticated attacker, potentially giving access to VMware workstations.

Cisco Talos’s Piotr Bania reported the vulnerabilities in the AMD Radeon graphics card ATIDXX64.DLL driver to the company in early October 2019.

The first AMD driver vulnerability, CVE-2019-5183, comes with a critical CVSS score of 9.0. In a unique attack, Bania created a “specially crafted pixel shader” (a method of rendering graphical features) to exploit the bug.

The vulnerability affects AMD ATI Radeon RX 550/550 Series for VMware Workstation and could allow a remote attacker to execute arbitrary code.

VMware’s security response centre told customers today: “We wanted to make you aware of multiple AMD security issues.. these have been shown to affect VMware Workstation running on Windows.” It urged users to patch.

See also: Software Patch Management: Tips, Tricks and Stern Warnings

Bania said: “This vulnerability can be triggered by supplying a malformed pixel shader (inside VMware guest operating system). Such attack can be triggered from VMware guest usermode. The vulnerability will be triggered in the vmware-vmx.exe process on host, or theoretically through WEBGL (remote website), leading to potential code execution (through a vtable type-confusion).

The security issues, CVE-2019-5124, CVE-2019-5146, CVE-2019-5147 and as described above, CVE-2019-5183, were tested on Radeon RX 550 /550 Series VMware Workstation 15 (15.5.0 build-14665864) with Windows 10 x64.

Content from our partners
Green for go: Transforming trade in the UK
Manufacturers are switching to personalised customer experience amid fierce competition
How many ends in end-to-end service orchestration?

Users have been urged to update to upgrade to the latest version of AMD drivers (20.1.1 or later), available from the AMD website.

As ever, security teams should ensure software is patched as regularly as possibly and basic security hygiene precautions are adhered to.

See also: Critics Hit Out at Cisco After Security Researcher Finds 120+ Vulnerabilities in a Single Product

 

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.
THANK YOU