Information
Due to performance reasons, modern graphic rendering is done within a dedicated graphic processing unit (GPU). Virtual machines can use the host-based GPU for such operations as well. Such dedicated hardware is typically accessed by using complex APIs like OpenGL and DirectX. This hardware-based 3D acceleration should be disabled if it is not needed.
Security flaws within APIs can lead to serious security breaches like memory corruption, denial of service, and remote code execution.
Solution
The following PowerCLI command may be used:
Get-VM -Name $VM | Get-AdvancedSetting mks.enable3d | Set-AdvancedSetting -Value FALSE
Impact:
GPU and Virtual Desktops may require this functionality.