High-Severity Vulnerability Patched in VMware Fusion

Broadcom’s advisory does not mention CVE-2026-41702 being used in attacks, but vulnerabilities in VMware products are oftenexploited in the wild. CISA’sKEV catalogcurrently includes 26 VMware flaws.Related:VMware Aria Operations Vulnerability Could Allow Remote Code ExecutionRelated:2024 VMware Flaw Now in Attackers’ CrosshairsRelated:Exploit for VMware Zero-Day Flaws Likely Built a Year Before Public Disclosure

Related:VMware Aria Operations Vulnerability Could Allow Remote Code ExecutionRelated:2024 VMware Flaw Now in Attackers’ CrosshairsRelated:Exploit for VMware Zero-Day Flaws Likely Built a Year Before Public Disclosure

Related:2024 VMware Flaw Now in Attackers’ CrosshairsRelated:Exploit for VMware Zero-Day Flaws Likely Built a Year Before Public Disclosure

Related:Exploit for VMware Zero-Day Flaws Likely Built a Year Before Public Disclosure

Eduard Kovacs (@EduardKovacs) is senior managing editor at SecurityWeek. He worked as a high school IT teacher before starting a career in journalism in 2011. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

In cyber-physical systems (CPS), just one hour of downtime can outweigh an entire annual security budget. Learn how to master the Return on Security Investment (ROSI) to align security goals with the bottom-line priorities.

Delve into big-picture strategies to reduce attack surfaces, improve patch management, conduct post-incident forensics, and tools and tricks needed in a modern organization.

Malwarebytes has named Chung Ip as Chief Financial Officer.

Semperis has appointed John Podboy as Chief Information Security Officer.

Randy Menon has become Chief Product and Marketing Officer at One Identity.

Source: SecurityWeek