Two security flaws are due to the improper use of setuid binaries and a heap-overflow issue in Cortado Thinprint. The latest released version of Fusion 15.5.2 doesn’t fix the CVE-2020-3950 EoP vulnerability. The next release of Fusion will contain a complete fix. Last week, a critical guest-to-Host DoS bug was found in the Windows VMnetdhcp service used to assign IP addresses to the guest host via the Dynamic Host Configuration Protocol (DHCP) Security researcher Rich Mirch told BleepingComputer that the latest released.
Source: https://www.bleepingcomputer.com/news/security/vmware-fixes-high-severity-privilege-escalation-bug-in-fusion/