Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2019-5520

VMware ESXi (6.7 before ESXi670-201904101-SG and 6.5 before ESXi650-201903001), Workstation (15.x before 15.0.3 and 14.x before 14.1.6), Fusion (11.x before 11.0.3 and 10.x before 10.1.6) updates address an out-of-bounds read vulnerability. Exploitation of this issue requires an attacker to have access to a virtual machine with 3D graphics enabled. Successful exploitation of this issue may lead to information disclosure.The workaround for this issue involves disabling the 3D-acceleration feature. This feature is not enabled by default on ESXi and is enabled by default on Workstation and Fusion.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 45.8%
CVSS Severity
CVSS v3 Score 5.9
CVSS v2 Score 4.3
Products affected by CVE-2019-5520
  • Vmware » Fusion » Version: 10.0.0
    cpe:2.3:a:vmware:fusion:10.0.0
  • Vmware » Fusion » Version: 10.0.1
    cpe:2.3:a:vmware:fusion:10.0.1
  • Vmware » Fusion » Version: 10.1.0
    cpe:2.3:a:vmware:fusion:10.1.0
  • Vmware » Fusion » Version: 10.1.1
    cpe:2.3:a:vmware:fusion:10.1.1
  • Vmware » Fusion » Version: 10.1.2
    cpe:2.3:a:vmware:fusion:10.1.2
  • Vmware » Fusion » Version: 10.1.3
    cpe:2.3:a:vmware:fusion:10.1.3
  • Vmware » Fusion » Version: 10.1.4
    cpe:2.3:a:vmware:fusion:10.1.4
  • Vmware » Fusion » Version: 10.1.5
    cpe:2.3:a:vmware:fusion:10.1.5
  • Vmware » Fusion » Version: 11.0.0
    cpe:2.3:a:vmware:fusion:11.0.0
  • Vmware » Fusion » Version: 11.0.1
    cpe:2.3:a:vmware:fusion:11.0.1
  • Vmware » Fusion » Version: 11.0.2
    cpe:2.3:a:vmware:fusion:11.0.2
  • Vmware » Workstation » Version: 14.0.0
    cpe:2.3:a:vmware:workstation:14.0.0
  • Vmware » Workstation » Version: 14.1
    cpe:2.3:a:vmware:workstation:14.1
  • Vmware » Workstation » Version: 14.1.0
    cpe:2.3:a:vmware:workstation:14.1.0
  • Vmware » Workstation » Version: 14.1.1
    cpe:2.3:a:vmware:workstation:14.1.1
  • Vmware » Workstation » Version: 14.1.2
    cpe:2.3:a:vmware:workstation:14.1.2
  • Vmware » Workstation » Version: 14.1.3
    cpe:2.3:a:vmware:workstation:14.1.3
  • Vmware » Workstation » Version: 14.1.4
    cpe:2.3:a:vmware:workstation:14.1.4
  • Vmware » Workstation » Version: 14.1.5
    cpe:2.3:a:vmware:workstation:14.1.5
  • Vmware » Workstation » Version: 15.0.0
    cpe:2.3:a:vmware:workstation:15.0.0
  • Vmware » Workstation » Version: 15.0.1
    cpe:2.3:a:vmware:workstation:15.0.1
  • Vmware » Workstation » Version: 15.0.2
    cpe:2.3:a:vmware:workstation:15.0.2
  • Vmware » Esxi » Version: 6.5
    cpe:2.3:o:vmware:esxi:6.5
  • Vmware » Esxi » Version: 6.7
    cpe:2.3:o:vmware:esxi:6.7


Products
Pricing
Contact Us

Shodan ® - All rights reserved