Description
Out-of-bound read vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administrative privileges on a guest VM to obtain limited information disclosure from the machine where VMware Workstation is installed.
Published: 2026-02-27
Score: 2.7 Low
EPSS: < 1% Very Low
KEV: No
Impact: Limited Information Disclosure from Host
Action: Patch
AI Analysis

Impact

An out‑of‑bound read flaw exists in VMware Workstation versions 25H1 and earlier. The flaw allows a guest VM user with non‑administrative privileges to read memory beyond intended bounds in the host process, exposing a small amount of sensitive data from the host. This is a classic CWE‑125 overflow that can lead to limited disclosure of host‑side information but does not provide code execution or denial of service.

Affected Systems

VMware Workstation, all platforms, versions 25H1 and earlier.

Risk and Exploitability

The vulnerability scores 2.7 on the CVSS scale, indicating only low to medium severity, and the EPSS score is below 1%, showing a very low probability of exploitation. It is not in the CISA Known Exploited Vulnerabilities catalog. The attack requires a local guest user running a virtual machine and does not need administrative or network privileges on the host. Because the disclosed data is limited, the overall risk to confidentiality is moderate and would normally be mitigated by preventing escalation of local guest privileges or by applying the vendor patch.

Generated by OpenCVE AI on April 16, 2026 at 15:22 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade VMware Workstation to version 26 or later, which contains the fix for the out‑of‑bound read.
  • Limit guest virtual machine users to non‑administrative accounts to reduce the potential impact of local read exploits.
  • Place VMware Workstation host systems in a segregated network segment and enforce strict access controls to prevent unauthorized local users from accessing host files.

Generated by OpenCVE AI on April 16, 2026 at 15:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 02 Mar 2026 12:15:00 +0000

Type Values Removed Values Added
First Time appeared Vmware
Vmware workstation
Vendors & Products Vmware
Vmware workstation

Fri, 27 Feb 2026 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 27 Feb 2026 19:30:00 +0000

Type Values Removed Values Added
Description Out-of-bound read vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administrative privileges on a guest VM to obtain limited information disclosure from the machine where VMware Workstation is installed.
Title VMware Workstation out-of-bound read vulnerability
Weaknesses CWE-125
References
Metrics cvssV3_1

{'score': 2.7, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N'}

Subscriptions

Vmware Workstation
cve-icon MITRE

Status: PUBLISHED

Assigner: vmware

Published:

Updated: 2026-02-27T20:14:10.400Z

Reserved: 2026-01-09T06:54:36.841Z

Link: CVE-2026-22717

cve-icon Vulnrichment

Updated: 2026-02-27T20:13:42.776Z

cve-icon NVD

Status : Deferred

Published: 2026-02-27T20:21:36.713

Modified: 2026-04-15T00:35:42.020

Link: CVE-2026-22717

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-16T15:30:06Z

Weaknesses