VMWare Products Multiple Vulnerabilities

Last Update Date: 15 Apr 2019 10:03 Release Date: 15 Apr 2019 5000 Views

RISK: Medium Risk

TYPE: Operating Systems - VM Ware

Multiple vulnerabilities were identified in VMware products, a remote attacker can exploit these vulnerabilities to trigger sensitive information disclosure and denial of service on the targeted system.

Impact

Denial of Service
Information Disclosure

System / Technologies affected

VMWare ESXi 6.7, 6.5
VMware Workstation Pro 14.1.6, 15.0.3
VMware Workstation Player 14.1.6, 15.0.3
VMware Fusion Pro / Fusion 10.1.6, 11.0.3

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

The vendor has issued fixes:
https://www.vmware.com/security/advisories/VMSA-2019-0006.html

Vulnerability Identifier

CVE-2019-5516
CVE-2019-5517
CVE-2019-5520

Source

US-CERT