VMware Workstation: Unprivileged Guest User Can Crash Host Processes

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

5.0

VMware Workstation: Unprivileged Guest User Can Crash Host Processes

CVE-2026-22716

Summary

This issue affects VMware Workstation versions 25H1 and earlier. An attacker with non-admin privileges on a guest virtual machine can cause the host's Workstation process to crash, disrupting virtual machine operations. To mitigate this, update to the latest version of Workstation or apply the recommended patches.

Original title

Out-of-bound write vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administrative privileges on a guest VM to terminate certain Workstation processes.

Original description

Out-of-bound write vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administrative privileges on a guest VM to terminate certain Workstation processes.

nvd CVSS3.1 5.0

Vulnerability type

CWE-787 Out-of-bounds Write

https://support.broadcom.com/web/ecx/support-content-notification/-/external/con...

Published: 27 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026