Medium
VMware ESXi, Workstation and Fusion contain an out-of-bounds read vulnerability in NVMe functionality. A malicious actor with local non-administrative access to a virtual machine may be able to read privileged information contained in memory.
Information disclosure
VMware
Refer to vendor’s advisory for the upgraded patches.
https://www.vmware.com/security/advisories/VMSA-2020-0012.html