CVE-2019-5535 : What You Need to Know

VMware Workstation and Fusion contain a network denial-of-service vulnerability due to mishandling specific IPv6 packets, leading to a network denial-of-service situation. VMware rates this issue as Moderate with a maximum CVSSv3 base score of 4.7.

Understanding CVE-2019-5535

This CVE pertains to a vulnerability in VMware Workstation and Fusion related to the mishandling of specific IPv6 packets, resulting in a network denial-of-service scenario.

What is CVE-2019-5535?

The vulnerability in VMware Workstation and Fusion involves the improper handling of certain IPv6 packets, potentially causing a network denial-of-service situation.

The Impact of CVE-2019-5535

The severity of this issue is classified as Moderate by VMware, with a maximum CVSSv3 base score of 4.7.

Technical Details of CVE-2019-5535

VMware Workstation and Fusion are affected by a network denial-of-service vulnerability due to the mishandling of specific IPv6 packets.

Vulnerability Description

The vulnerability arises from the improper handling of certain IPv6 packets, leading to a network denial-of-service situation.

Affected Systems and Versions

Product: VMware Workstation and Fusion
Versions: VMware Workstation 15.x and Fusion 11.x

Exploitation Mechanism

The vulnerability can be exploited by sending specific IPv6 packets to the affected systems, triggering a network denial-of-service condition.

Mitigation and Prevention

To address CVE-2019-5535, users should take immediate steps and implement long-term security practices.

Immediate Steps to Take

Apply security patches provided by VMware promptly.
Monitor network traffic for any suspicious activity.

Long-Term Security Practices

Regularly update VMware Workstation and Fusion to the latest versions.
Implement network security measures to detect and prevent denial-of-service attacks.

Patching and Updates

Ensure that VMware Workstation and Fusion are updated with the latest security patches to mitigate the vulnerability.