CVE-2019-5541
First published: Wed Nov 20 2019(Updated: )
VMware Workstation (15.x before 15.5.1) and Fusion (11.x before 11.5.1) contain an out-of-bounds write vulnerability in the e1000e virtual network adapter. Successful exploitation of this issue may lead to code execution on the host from the guest or may allow attackers to create a denial-of-service condition on their own VM.
Credit: security@vmware.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| VMware Workstation | >=15.0.0<15.5.1 | |
| VMware Fusion | >=11.0.0<11.5.1 | |
| Apple Mac OS X |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2019-5541?
CVE-2019-5541 is an out-of-bounds write vulnerability in the e1000e virtual network adapter of VMware Workstation and Fusion.
What is the severity of CVE-2019-5541?
The severity of CVE-2019-5541 is critical with a CVSS score of 9.1.
Which software versions are affected by CVE-2019-5541?
CVE-2019-5541 affects VMware Workstation versions up to and including 15.5.1, and VMware Fusion versions up to and including 11.5.1.
How can the CVE-2019-5541 vulnerability be exploited?
Exploiting CVE-2019-5541 may lead to code execution on the host from the guest or allow attackers to create a denial-of-service.
Is Apple Mac OS X vulnerable to CVE-2019-5541?
No, Apple Mac OS X is not vulnerable to CVE-2019-5541.
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/remedy
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/vmware
- canonical/vmware workstation
- version/vmware workstation/15.0.0
- canonical/vmware fusion
- version/vmware fusion/11.0.0
- vendor/apple
- canonical/apple mac os x