9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
64.8%
3a. VMware Workstation and Fusion out-of-bounds write vulnerability in e1000e virtual network adapter (CVE-2019-5541)
VMware Workstation and Fusion contain an out-of-bounds write vulnerability in the e1000e virtual network adapter. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 8.7.
3b. VMware Workstation and Fusion vmnetdhcp information disclosure vulnerability (CVE-2019-5540)
Workstation and Fusion contain an information disclosure vulnerability in vmnetdhcp. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 7.7.
3c. VMware Workstation and Fusion denial-of-service vulnerability (CVE-2019-5542)
VMware Workstation and Fusion contain a denial-of-service vulnerability in the RPC handler. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 5.0.
CPE | Name | Operator | Version |
---|---|---|---|
workstation | lt | 15.5.1 | |
fusion | lt | 11.5.1 |
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5540
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5541
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5542
docs.vmware.com/en/VMware-Fusion/index.html
docs.vmware.com/en/VMware-Workstation-Player/index.html
docs.vmware.com/en/VMware-Workstation-Pro/index.html
www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H
www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L
www.vmware.com/go/downloadfusion
www.vmware.com/go/downloadplayer
www.vmware.com/go/downloadworkstation
9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
64.8%