CVE-2026-41702
HIGHVMware Fusion >=2025H2 <2026H1 - Privilege Escalation via SETUID Binary TOCTOU Race Condition
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2026-41702. PoCs published by exploitintel.
AI-analyzed exploit summary This repository contains a functional exploit for CVE-2026-41702, a TOCTOU race condition in VMware Fusion 25.x on macOS 15.x. The exploit leverages a symlink race to achieve local privilege escalation (LPE) by manipulating file ownership via chown().
Description
VMware Fusion contains a TOCTOU (Time-of-check Time-of-use) vulnerability that occurs during an operation performed by a SETUID binary. A malicious actor with local non-administrative user privileges may exploit this vulnerability to escalate privileges to root on the system where Fusion is installed.
Exploits (1)
This repository contains a functional exploit for CVE-2026-41702, a TOCTOU race condition in VMware Fusion 25.x on macOS 15.x. The exploit leverages a symlink race to achieve local privilege escalation (LPE) by manipulating file ownership via chown().
References (1)
Scores
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H