CVE-2019-5514

VMware VMware Fusion (11.x before 11.0.3) contains a security vulnerability due to certain unauthenticated APIs accessible through a web socket. An attacker may exploit this issue by tricking the host user to execute a JavaScript to perform unauthorized functions on the guest machine where VMware Tools is installed. This may further be exploited to execute commands on the guest machines.
Configurations

Configuration 1

cpe:2.3:a:vmware:fusion:*:*:*:*:*:*:*:*

Information

Published : 2019-04-01 09:30

Updated : 2021-07-21 11:39


NVD link : CVE-2019-5514

Mitre link : CVE-2019-5514

Products Affected
No products.
CWE