CVE-2026-22716

Published: Feb 27, 2026Modified: Mar 2, 2026

5.0

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:L

Exploitability: 1.8 / Impact: 2.7

Source: security@vmware.com (Secondary)

Description

Out-of-bound write vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administrative privileges on a guest VM to terminate certain Workstation processes.

Related CWEs

CWE-787

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (1)

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36986

Source: security@vmware.com

Timeline

No history available yet.