VirtualBox quite openly states that they don't take any responsibility for security of VMs with "3d acceleration" enabled. Is there similar fine print for VMWare Workstation hypervisor? Or is VMWare more confident about own implementation of virtual VGA drivers?
I don't know where VirtualBox is coming from on that disclaimer. But it might have been because of the VMware SVGA vulnerability that was found more than a year back. But this was fixed in Workstation Pro/Player 12.5.5 and other corresponding VMware products (ESXi, Fusion).
https://docs.vmware.com/en/VMware-Workstation-Pro/12.0/rn/workstation-1255-release-notes.html#fixes
I don't know where VirtualBox is coming from on that disclaimer. But it might have been because of the VMware SVGA vulnerability that was found more than a year back. But this was fixed in Workstation Pro/Player 12.5.5 and other corresponding VMware products (ESXi, Fusion).
https://docs.vmware.com/en/VMware-Workstation-Pro/12.0/rn/workstation-1255-release-notes.html#fixes
VirtualBox has this disclaimer since I remember (at least 6 years now). I think they just don't put as much attention to their vga support. Those SVGA vulnerabilities are quite unsettling... Good thing they're patched but I hope thore incidents are not too common 😕