8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
0.085 Low
EPSS
Percentile
94.3%
03/28/2019
Critical
Multiple vulnerabilities were found in VMware Workstation and Fusion. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code and cause denial of service.
VMware Workstation 15.x earlier than 15.0.4
VMware Workstation 14.x earlier than 14.1.7
VMware Fusion 11.x earlier than 11.0.3
VMware Fusion 10.x earlier than 10.1.6
Update to the latest version
Download Fusion
ACE
CVE-2019-55146.8High
CVE-2019-55159.0Critical
CVE-2019-55187.2High
CVE-2019-55197.2High
CVE-2019-55249.0Critical
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5514
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5515
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5518
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5519
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5524
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/VMware-Fusion/
threats.kaspersky.com/en/product/VMware-Workstation/
www.vmware.com/products/fusion.html
www.vmware.com/security/advisories/VMSA-2019-0005.html
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
0.085 Low
EPSS
Percentile
94.3%