CVE-2019-5526

HIGH EXPLOITED

Vmware Workstation < 15.1.0 - Uncontrolled Search Path

Title source: rule

Description

VMware Workstation (15.x before 15.1.0) contains a DLL hijacking issue because some DLL files are improperly loaded by the application. Successful exploitation of this issue may allow attackers with normal user privileges to escalate their privileges to administrator on a windows host where Workstation is installed.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Miguel Mendez Z. & Claudio Cortes C. · textlocalwindows

https://www.exploit-db.com/exploits/46851

View Code ZIP pw:eip

References (3)

[Third Party Advisory] http://packetstormsecurity.com/files/152946/VMware-Workstation-DLL-Hijacking.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/108333

[Vendor Advisory] https://www.vmware.com/security/advisories/VMSA-2019-0007.html

Scores

CVSS v3 7.8

EPSS 0.1268

EPSS Percentile 93.9%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitation Intel

VulnCheck KEV 2023-06-22

Classification

CWE

CWE-427

Status published

Affected Products (1)

vmware/workstation < 15.1.0

Timeline

Published May 15, 2019

Tracked Since Feb 18, 2026