VMware has release security bulletin VMSA-2018-0030 which patches a critical exploit as follows.  While ADMINs do a great job of patching Microsoft security fixes, ALL products should be kept up-to-date & important fixes for 3rd party vendor products are sometimes less visible

https://www.vmware.com/security/advisories/VMSA-2018-0030.html

VMware Workstation and Fusion updates address an integer overflow issue.  VMware Workstation and Fusion contain an integer overflow  vulnerability in the virtual network devices. This issue may allow a guest to execute code on the host.  An attacker could exploit this vulnerability to take control of an affected system.