Multiple vulnerabilities in VMware Workstation and Player

Описание

Multiple vulnerabilities were found in VMware Workstation and Player. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. A denial of service vulnerability in the RPC handler can be exploited to cause denial of service.
2. An information disclosure vulnerability in TSX Asynchronous Abort condition can be exploited locally to obtain sensitive information.
3. A out-of-bounds write vulnerability in e1000e virtual network adapter can be exploited to cause denial of service.
4. An information disclosure vulnerability in vmnetdhcp can be exploited to obtain sensitive information.

Первичный источник обнаружения

• VMSA-2019-0020
  VMSA-2019-0021
  

Связанные продукты

• VMware-Workstation
• VMware-Player

Список CVE

• CVE-2019-11135
  high
• CVE-2019-5542
  critical
• CVE-2019-5541
  critical
• CVE-2019-5540
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com