Question 1

What is CVE-2023-20854 — CVE-2023-20854?

Accepted Answer

VMware Workstation contains an arbitrary file deletion vulnerability. A malicious actor with local user privileges on the victim's machine may exploit this vulnerability to delete arbitrary files from the file system of the machine on which Workstation is installed.

Question 2

What is the authoritative source for CVE-2023-20854?

Accepted Answer

CVE-2023-20854 (CVE-2023-20854) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVSS	8.4 ()
Vector	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H
EPSS	0.29% probability of exploitation · percentile 20.9% · 2026-06-18T12:00:27Z
Last modified	2026-06-17

CVE-2023-20854CVE-2023-20854

Description

Scoring