CVSS 3.1 Score 5.9 of 10 (medium)


Published Feb 29, 2024


The vulnerability with the CVE ID CVE-2024-22251 affects VMware Workstation and Fusion. It is classified as a medium risk vulnerability with a base score of 5.9. The vulnerability allows a malicious actor with local administrative privileges on a virtual machine to trigger an out-of-bounds read, leading to information disclosure. The confidentiality impact of this vulnerability is high. The exploitability score is 1.4, indicating that it can be easily exploited. There is no need for user interaction, and the attack vector is local. The integrity impact is none, and the availability impact is also none. To remediate this vulnerability, users are advised to update their VMware Workstation and Fusion to the latest version provided by VMware as soon as possible.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-22251 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options