VMware release security update to avoid remote code execution. The attacker could exploit this vulnerability to take control of an affected system before do the security update. Details shown as below (url):

https://www.vmware.com/security/advisories/VMSA-2018-0015.html