CVE-2019-5526

Name of the Vulnerable Software and Affected Versions VMware Workstation versions 15.x before 15.1.0

Description The issue is related to a DLL hijacking problem due to improper loading of DLL files by the application. This may allow attackers with normal user privileges to escalate their privileges to administrator on a Windows host where Workstation is installed. The vulnerability can be exploited by a remote attacker to gain elevated privileges.

Recommendations For versions 15.x before 15.1.0, update to version 15.1.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable DLL files until a patch is available.