KLA11437
Multiple vulnerabilities in VMware products
Updated: 05/22/2020
Detect date
?
03/14/2019
Severity
?
High
Description

Multiple vulnerabilities were found in VMware products. Malicious users can exploit these vulnerabilities to gain privileges.

Below is a complete list of vulnerabilities:

  1. Vulnerability related to VMX process can be exploited remotely to gain privileges;
  2. Vulnerability related to COM classes used by the VMX process can be exploited remotely to gain privileges.
Affected products

VMware Workstation Pro earlier than 14.1.6
VMware Workstation Player earlier than 14.1.6
VMware Workstation Pro earlier than 15.0.3
VMware Workstation Player earlier than 15.0.3

Solution

Update to latest version
Download Workstation

Original advisories

VMSA-2019-0002

Impacts
?
PE 
[?]
Related products
VMware Workstation
VMware Player
CVE-IDS
?
CVE-2019-55110.0Unknown
CVE-2019-55120.0Unknown