The host is installed with VMware Fusion 11.x before 11.5.2 and is prone to an information leak vulnerability. A flaw is present in the application, which fails to handle an issue in the XHCI USB controller. Successful exploitation may allow attackers with local access to a virtual machine to read privileged information contained in hypervisor memory from a virtual machine.