VMware

Workstation

222 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2026-22716

  • EPSS 0.01%
  • Veröffentlicht 27.02.2026 19:16:07
  • Zuletzt bearbeitet 02.03.2026 20:30:10

Out-of-bound write vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administrative privileges on a guest VM to terminate certain Workstation processes.

2.7

CVE-2026-22717

  • EPSS 0.01%
  • Veröffentlicht 27.02.2026 19:11:54
  • Zuletzt bearbeitet 02.03.2026 20:30:10

Out-of-bound read vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administrative privileges on a guest VM to obtain limited information disclosure from the machine where VMware Workstation is installed.

6.1

CVE-2026-22722

  • EPSS 0.01%
  • Veröffentlicht 26.02.2026 18:35:20
  • Zuletzt bearbeitet 27.02.2026 14:06:37

A malicious actor with authenticated user privileges on a Windows based Workstation host may be able to cause a null pointer dereference error. To Remediate CVE-2026-22722, apply the patches listed in the "Fixed version" column of the 'Response Matri...

5.9

CVE-2026-22715

  • EPSS 0.03%
  • Veröffentlicht 26.02.2026 18:29:14
  • Zuletzt bearbeitet 27.02.2026 18:16:11

VMWare Workstation and Fusion contain a logic flaw in the management of network packets.  Known attack vectors: A malicious actor with administrative privileges on a Guest VM may be able to interrupt or intercept network connections of other Guest V...

7.1

CVE-2025-41239

  • EPSS 0.04%
  • Veröffentlicht 15.07.2025 18:35:03
  • Zuletzt bearbeitet 15.07.2025 20:07:28

VMware ESXi, Workstation, Fusion, and VMware Tools contains an information disclosure vulnerability due to the usage of an uninitialised memory in vSockets. A malicious actor with local administrative privileges on a virtual machine may be able to ex...

9.3

CVE-2025-41238

Medienbericht
  • EPSS 0.03%
  • Veröffentlicht 15.07.2025 18:34:48
  • Zuletzt bearbeitet 15.07.2025 20:07:28

VMware ESXi, Workstation, and Fusion contain a heap-overflow vulnerability in the PVSCSI (Paravirtualized SCSI) controller that leads to an out of-bounds write. A malicious actor with local administrative privileges on a virtual machine may exploit t...

9.3

CVE-2025-41237

Medienbericht
  • EPSS 0.03%
  • Veröffentlicht 15.07.2025 18:34:21
  • Zuletzt bearbeitet 15.07.2025 20:07:28

VMware ESXi, Workstation, and Fusion contain an integer-underflow in VMCI (Virtual Machine Communication Interface) that leads to an out-of-bounds write. A malicious actor with local administrative privileges on a virtual machine may exploit this iss...

9.3

CVE-2025-41236

Medienbericht
  • EPSS 0.04%
  • Veröffentlicht 15.07.2025 18:34:12
  • Zuletzt bearbeitet 15.07.2025 20:07:28

VMware ESXi, Workstation, and Fusion contain an integer-overflow vulnerability in the VMXNET3 virtual network adapter. A malicious actor with local administrative privileges on a virtual machine with VMXNET3 virtual network adapter may exploit this i...

5.5

CVE-2025-41227

Medienbericht
  • EPSS 0.09%
  • Veröffentlicht 20.05.2025 14:24:29
  • Zuletzt bearbeitet 21.05.2025 20:25:16

VMware ESXi, Workstation, and Fusion contain a denial-of-service vulnerability due to certain guest options. A malicious actor with non-administrative privileges within a guest operating system may be able to exploit this issue by exhausting memory o...

8.2

CVE-2025-22224

Warnung Medienbericht
  • EPSS 52.67%
  • Veröffentlicht 04.03.2025 12:15:33
  • Zuletzt bearbeitet 30.10.2025 19:52:49

VMware ESXi, and Workstation contain a TOCTOU (Time-of-Check Time-of-Use) vulnerability that leads to an out-of-bounds write. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the vi...