VMware

Fusion

137 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2026-22716

  • EPSS 0.01%
  • Veröffentlicht 27.02.2026 19:16:07
  • Zuletzt bearbeitet 02.03.2026 20:30:10

Out-of-bound write vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administrative privileges on a guest VM to terminate certain Workstation processes.

5.9

CVE-2026-22715

  • EPSS 0.03%
  • Veröffentlicht 26.02.2026 18:29:14
  • Zuletzt bearbeitet 27.02.2026 18:16:11

VMWare Workstation and Fusion contain a logic flaw in the management of network packets.  Known attack vectors: A malicious actor with administrative privileges on a Guest VM may be able to interrupt or intercept network connections of other Guest V...

7.1

CVE-2025-41239

  • EPSS 0.04%
  • Veröffentlicht 15.07.2025 18:35:03
  • Zuletzt bearbeitet 15.07.2025 20:07:28

VMware ESXi, Workstation, Fusion, and VMware Tools contains an information disclosure vulnerability due to the usage of an uninitialised memory in vSockets. A malicious actor with local administrative privileges on a virtual machine may be able to ex...

9.3

CVE-2025-41238

Medienbericht
  • EPSS 0.03%
  • Veröffentlicht 15.07.2025 18:34:48
  • Zuletzt bearbeitet 15.07.2025 20:07:28

VMware ESXi, Workstation, and Fusion contain a heap-overflow vulnerability in the PVSCSI (Paravirtualized SCSI) controller that leads to an out of-bounds write. A malicious actor with local administrative privileges on a virtual machine may exploit t...

9.3

CVE-2025-41237

Medienbericht
  • EPSS 0.03%
  • Veröffentlicht 15.07.2025 18:34:21
  • Zuletzt bearbeitet 15.07.2025 20:07:28

VMware ESXi, Workstation, and Fusion contain an integer-underflow in VMCI (Virtual Machine Communication Interface) that leads to an out-of-bounds write. A malicious actor with local administrative privileges on a virtual machine may exploit this iss...

9.3

CVE-2025-41236

Medienbericht
  • EPSS 0.04%
  • Veröffentlicht 15.07.2025 18:34:12
  • Zuletzt bearbeitet 15.07.2025 20:07:28

VMware ESXi, Workstation, and Fusion contain an integer-overflow vulnerability in the VMXNET3 virtual network adapter. A malicious actor with local administrative privileges on a virtual machine with VMXNET3 virtual network adapter may exploit this i...

5.5

CVE-2025-41227

Medienbericht
  • EPSS 0.09%
  • Veröffentlicht 20.05.2025 14:24:29
  • Zuletzt bearbeitet 21.05.2025 20:25:16

VMware ESXi, Workstation, and Fusion contain a denial-of-service vulnerability due to certain guest options. A malicious actor with non-administrative privileges within a guest operating system may be able to exploit this issue by exhausting memory o...

6

CVE-2025-22226

Warnung
  • EPSS 6.81%
  • Veröffentlicht 04.03.2025 12:15:33
  • Zuletzt bearbeitet 30.10.2025 19:52:41

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability due to an out-of-bounds read in HGFS. A malicious actor with administrative privileges to a virtual machine may be able to exploit this issue to leak memory from the...

7.8

CVE-2024-38811

  • EPSS 0.13%
  • Veröffentlicht 03.09.2024 10:15:05
  • Zuletzt bearbeitet 17.09.2024 13:33:32

VMware Fusion (13.x before 13.6) contains a code-execution vulnerability due to the usage of an insecure environment variable. A malicious actor with standard user privileges may exploit this vulnerability to execute code in the context of the Fusion...

7.8

CVE-2024-22273

  • EPSS 0.3%
  • Veröffentlicht 21.05.2024 18:15:08
  • Zuletzt bearbeitet 26.03.2025 16:15:19

The storage controllers on VMware ESXi, Workstation, and Fusion have out-of-bounds read/write vulnerability. A malicious actor with access to a virtual machine with storage controllers enabled may exploit this issue to create a denial of service cond...