CVE-2026-22716

CWE-787Out-of-bounds Write3 documents3 sources
Severity
5.0MEDIUM
EPSS
0.0%
top 99.06%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Vmware Workstation
Timeline
PublishedFeb 27

Description

Out-of-bound write vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administrative privileges on a guest VM to terminate certain Workstation processes.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:LExploitability: 1.8 | Impact: 2.7

Affected Packages1 packages

CVEListV5vmware/workstation25H225H2U1

🔴Vulnerability Details

2
GHSA
GHSA-jm5v-cr99-76mr: Out-of-bound write vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administrative privileges on a guest VM2026-02-27
CVEList
VMware Workstation out-of-bounds write vulnerability2026-02-27
CVE-2026-22716 (MEDIUM CVSS 5) | Out-of-bound write vulnerability in | cvebase.io