Vulnerability Description
VMware Workstation (15.x before 15.0.3, 14.x before 14.1.6) and Fusion (11.x before 11.0.3, 10.x before 10.1.6) updates address an out-of-bounds write vulnerability in the e1000 and e1000e virtual network adapters. Exploitation of this issue may lead to code execution on the host from the guest but it is more likely to result in a denial of service of the guest.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Vmware | Fusion | >= 10.0.0, < 10.1.6 |
| Vmware | Workstation | >= 14.0.0, < 14.1.6 |
Related Weaknesses (CWE)
References
- https://packetstormsecurity.com/files/152290/VMware-Security-Advisory-2019-0005.Third Party AdvisoryVDB Entry
- https://www.securityfocus.com/bid/107634Third Party AdvisoryVDB Entry
- https://www.vmware.com/security/advisories/VMSA-2019-0005.htmlVendor Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-19-306/Third Party AdvisoryVDB Entry
- https://www.zerodayinitiative.com/advisories/ZDI-19-516/
- https://packetstormsecurity.com/files/152290/VMware-Security-Advisory-2019-0005.Third Party AdvisoryVDB Entry
- https://www.securityfocus.com/bid/107634Third Party AdvisoryVDB Entry
- https://www.vmware.com/security/advisories/VMSA-2019-0005.htmlVendor Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-19-306/Third Party AdvisoryVDB Entry
- https://www.zerodayinitiative.com/advisories/ZDI-19-516/
FAQ
What is CVE-2019-5515?
CVE-2019-5515 is a vulnerability with a CVSS score of 8.8 (HIGH). VMware Workstation (15.x before 15.0.3, 14.x before 14.1.6) and Fusion (11.x before 11.0.3, 10.x before 10.1.6) updates address an out-of-bounds write vulnerability in the e1000 and e1000e virtual net...
How severe is CVE-2019-5515?
CVE-2019-5515 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-5515?
Check the references section above for vendor advisories and patch information. Affected products include: Vmware Fusion, Vmware Workstation.