VMware patches five security vulnerabilities | SC Media
Patch management

VMware patches five security vulnerabilities

November 13, 2019
  • CVE-2019-5541 covers an out-of-bounds write vulnerability in e1000e virtual network adapter that could lead to lead to code execution on the host from the guest or may allow attackers to create a denial-of-service condition on their own VM.
  • CVE-2019-5540 is an information disclosure vulnerability in vmnetdhcp that if abused could allow an attacker on a guest VM to disclose sensitive information by leaking memory from the host process.
  • CVE-2019-5542 refers to a denial-of-service vulnerability in the RPC handler giving attackers with normal user privileges to create a denial-of-service condition on their own VM.
prestitial ad