Vmware fusion

This hub aggregates every CVE we track for Vmware fusion, a product in the cloud saas space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Vmware fusion.

• CVE-2026-22715VMware Workstation/Fusion NAT vulnerability5.9Feb 26, 2026
• CVE-2025-41239vSockets information-disclosure vulnerability7.1Jul 15, 2025
• CVE-2025-41238PVSCSI heap-overflow vulnerability9.3Jul 15, 2025
• CVE-2025-41237VMCI integer-underflow vulnerability9.3Jul 15, 2025
• CVE-2025-41236VMXNET3 integer-overflow vulnerability9.3Jul 15, 2025
• CVE-2025-41227Denial-of-Service Vulnerability5.5May 20, 2025
• CVE-2025-22226VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability due to an out-of-bounds read in HGFS. A malicious actor with administrative privileges to a virtual machine ma...KEV7.1Mar 4, 2025
• CVE-2024-38811Code-execution vulnerability8.8Sep 3, 2024
• CVE-2024-22273The storage controllers on VMware ESXi, Workstation, and Fusion have out-of-bounds read/write vulnerability. A malicious actor with access to a virtual machine with storage controllers enabled may...8.1May 21, 2024
• CVE-2024-22270VMware Workstation and Fusion contain an information disclosure vulnerability in the Host Guest File Sharing (HGFS) functionality. A malicious actor with local administrative privileges on a virtu...7.1May 14, 2024
• CVE-2024-22269VMware Workstation and Fusion contain an information disclosure vulnerability in the vbluetooth device. A malicious actor with local administrative privileges on a virtual machine may be able to r...7.1May 14, 2024
• CVE-2024-22268VMware Workstation and Fusion contain a heap buffer-overflow vulnerability in the Shader functionality. A malicious actor with non-administrative access to a virtual machine with 3D graphics enabl...7.1May 14, 2024
• CVE-2024-22267VMware Workstation and Fusion contain a use-after-free vulnerability in the vbluetooth device. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to...9.3May 14, 2024
• CVE-2024-22255Information disclosure vulnerability7.1Mar 5, 2024
• CVE-2024-22254Out-of-bounds write vulnerability7.9Mar 5, 2024