CVE-2019-5511
HIGHVMware Workstation <15.0.3-14.1.6 - Privilege Escalation
Title source: llmDescription
VMware Workstation (15.x before 15.0.3, 14.x before 14.1.6) running on Windows does not handle paths appropriately. Successful exploitation of this issue may allow the path to the VMX executable, on a Windows host, to be hijacked by a non-administrator leading to elevation of privilege.
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_misc
https://www.vmware.com/security/advisories/VMSA-2019-0002.html
Scores
CVSS v3
8.8
EPSS
0.0004
EPSS Percentile
12.9%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Details
Status
published
Products (1)
vmware/workstation
14.0.0 - 14.1.6
Published
Apr 09, 2019
Tracked Since
Feb 18, 2026