The host is missing a moderate security update according to advisory VMSA-2024-0005 and prone to an out-of-bounds read vulnerability. A flaw is present in the application, which fails to properly handle issues in the USB CCID (chip card interface device). Successful exploitation could allow attackers with local administrative privileges to cause information disclosure.