CVE-2019-5540
published 2019-11-20CVE-2019-5540: VMware Workstation (15.x before 15.5.1) and Fusion (11.x before 11.5.1) contain an information disclosure vulnerability in vmnetdhcp. Successful exploitation…
high7.7CVSS 3.1
AVNACLPRLUINSCCHINAN
VMware Workstation (15.x before 15.5.1) and Fusion (11.x before 11.5.1) contain an information disclosure vulnerability in vmnetdhcp. Successful exploitation of this issue may allow an attacker on a guest VM to disclose sensitive information by leaking memory from the host process.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| vmware | fusion | >= 11.0.0 < 11.5.1 | 11.5.1 |
| vmware | workstation | >= 15.0.0 < 15.5.1 | 15.5.1 |
| vmware | workstation_and_fusion | — | — |