The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
VMware Workstation (14.x before 14.1.3) and Fusion (10.x before 10.1.3) contain an out-of-bounds write vulnerability in the e1000 device. This issue may allow a guest to execute code on the host.
Base Score: 7.2
Impact Score: 10
Exploitability Score: 3.9
Base Score: 8.8
Impact Score: 6
Exploitability Score: 2
|111979||VMware Workstation 14.x < 14.1.3 Out-of-Bounds Write (VMSA-2018-0022)||Nessus||Windows|
|111978||VMware Player 14.x < 14.1.3 Out-of-Bounds Write (VMSA-2018-022)||Nessus||Windows|
|111977||VMware Fusion 10.x < 10.1.3 Out-of-Bounds Write Vulnerabilities (VMSA-2018-0022) (macOS)||Nessus||MacOS X Local Security Checks|
|111976||VMware Workstation 14.x < 14.1.3 Out-of-Bounds Write (VMSA-2018-0022) (Linux)||Nessus||General|
|111975||VMware Player 14.x < 14.1.3 Out-of-Bounds Write (VMSA-2018-022) (Linux)||Nessus||General|