Vmware workstation

This hub aggregates every CVE we track for Vmware workstation, a product in the cloud saas space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Vmware workstation.

• CVE-2026-22717VMware Workstation out-of-bound read vulnerability2.7Feb 27, 2026
• CVE-2026-22716VMware Workstation out-of-bounds write vulnerability5.0Feb 27, 2026
• CVE-2026-22715VMware Workstation/Fusion NAT vulnerability5.9Feb 26, 2026
• CVE-2025-41239vSockets information-disclosure vulnerability7.1Jul 15, 2025
• CVE-2025-41238PVSCSI heap-overflow vulnerability9.3Jul 15, 2025
• CVE-2025-41237VMCI integer-underflow vulnerability9.3Jul 15, 2025
• CVE-2025-41236VMXNET3 integer-overflow vulnerability9.3Jul 15, 2025
• CVE-2025-41227Denial-of-Service Vulnerability5.5May 20, 2025
• CVE-2025-22226VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability due to an out-of-bounds read in HGFS. A malicious actor with administrative privileges to a virtual machine ma...KEV7.1Mar 4, 2025
• CVE-2025-22224VMware ESXi, and Workstation contain a TOCTOU (Time-of-Check Time-of-Use) vulnerability that leads to an out-of-bounds write. A malicious actor with local administrative privileges on a virtual m...KEV9.3Mar 4, 2025
• CVE-2024-22273The storage controllers on VMware ESXi, Workstation, and Fusion have out-of-bounds read/write vulnerability. A malicious actor with access to a virtual machine with storage controllers enabled may...8.1May 21, 2024
• CVE-2024-22270VMware Workstation and Fusion contain an information disclosure vulnerability in the Host Guest File Sharing (HGFS) functionality. A malicious actor with local administrative privileges on a virtu...7.1May 14, 2024
• CVE-2024-22269VMware Workstation and Fusion contain an information disclosure vulnerability in the vbluetooth device. A malicious actor with local administrative privileges on a virtual machine may be able to r...7.1May 14, 2024
• CVE-2024-22268VMware Workstation and Fusion contain a heap buffer-overflow vulnerability in the Shader functionality. A malicious actor with non-administrative access to a virtual machine with 3D graphics enabl...7.1May 14, 2024
• CVE-2024-22267VMware Workstation and Fusion contain a use-after-free vulnerability in the vbluetooth device. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to...9.3May 14, 2024