CVE-2019-5541
CRITICALVMware Workstation 15.0.0-15.5.0 and Fusion 11.0.0-11.5.0 - Out-of-bounds Write in e1000e Virtual Network Adapter
Title source: llmDescription
VMware Workstation (15.x before 15.5.1) and Fusion (11.x before 11.5.1) contain an out-of-bounds write vulnerability in the e1000e virtual network adapter. Successful exploitation of this issue may lead to code execution on the host from the guest or may allow attackers to create a denial-of-service condition on their own VM.
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_confirm
https://www.vmware.com/security/advisories/VMSA-2019-0021.html
Scores
CVSS v3
9.1
EPSS
0.0071
EPSS Percentile
72.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Details
CWE
CWE-787
Status
published
Products (2)
vmware/fusion
11.0.0 - 11.5.1
vmware/workstation
15.0.0 - 15.5.1
Published
Nov 20, 2019
Tracked Since
Feb 18, 2026