Searching
..

Click anywhere to stop

KLA12121
Multiple vulnerabilities in VMware Workstation and Player

Обновлено: 25/01/2024
Дата обнаружения
12/11/2019
Уровень угрозы
High
Описание

Multiple vulnerabilities were found in VMware Workstation and Player. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information.

Below is a complete list of vulnerabilities:

  1. A denial of service vulnerability in the RPC handler can be exploited to cause denial of service.
  2. An information disclosure vulnerability in TSX Asynchronous Abort condition can be exploited locally to obtain sensitive information.
  3. A out-of-bounds write vulnerability in e1000e virtual network adapter can be exploited to cause denial of service.
  4. An information disclosure vulnerability in vmnetdhcp can be exploited to obtain sensitive information.
Пораженные продукты

VMware Workstation 15.x earlier than 15.5.1
VMware Player 15.x earlier than 15.5.1

Решение

Update to the latest version
Download VMWare Workstation

Первичный источник обнаружения
VMSA-2019-0020
VMSA-2019-0021
Оказываемое влияние
?
OSI 
[?]

DoS 
[?]
Связанные продукты
VMware Workstation
VMware Player
CVE-IDS
CVE-2019-111356.5High
CVE-2019-55427.7Critical
CVE-2019-55419.1Critical
CVE-2019-55407.7Critical
Узнай статистику распространения уязвимостей в твоем регионе