CVE-2019-5527
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2019-5527
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
ESXi, Workstation, Fusion, VMRC and Horizon Client contain a use-after-free vulnerability in the virtual sound device. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 8.5.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
多款VMware产品资源管理错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
VMware ESXi等都是美国威睿(VMware)公司的产品。VMware ESXi是一套可直接安装在物理服务器上的服务器虚拟化平台。VMware Workstation是一套虚拟机软件。VMware Fusion是一套专用于在苹果机(Mac)上运行Windows应用程序的的虚拟机软件。 多款VMware产品中存在资源管理错误漏洞。该漏洞源于网络系统或产品对系统资源(如内存、磁盘空间、文件等)的管理不当。以下产品及版本受到影响:VMware ESXi 6.7版本,6.5版本,6.0版本;Workstat
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | ESXi, Workstation, Fusion, VMRC and Horizon Client | ESXi 6.7. 6.5, 6.0, Workstation 15.x, Fusion 11.x, VMRC 10.x and Horizon Client 5.x and prior | - |
II. Public POCs for CVE-2019-5527
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2019-5527
请登录查看更多情报信息。
- https://www.vmware.com/security/advisories/VMSA-2019-0014.htmlx_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2019-5527
Same Patch Batch · n/a · 2019-10-10 · 59 CVEs total
| CVE-2015-9464 | WordPress s3bubble-amazon-s3-html-5-video-with-adverts插件路径遍历漏洞 | |
| CVE-2019-17072 | WordPress new-contact-form-widget插件SQL注入漏洞 | |
| CVE-2019-17429 | Adhouma CMS SQL注入漏洞 | |
| CVE-2019-17070 | WordPress liquid-speech-balloon插件跨站脚本漏洞 | |
| CVE-2019-17071 | WordPress client-dash插件跨站脚本漏洞 | |
| CVE-2019-17430 | 赞赞网络科技 EyouCms 跨站脚本漏洞 | |
| CVE-2015-9460 | WordPress booking-system插件SQL注入漏洞 | |
| CVE-2015-9461 | WordPress awesome-filterable-portfolio插件SQL注入漏洞 | |
| CVE-2015-9462 | WordPress awesome-filterable-portfolio插件SQL注入漏洞 | |
| CVE-2019-17449 | Avira Operations Avira Software Updater 代码问题漏洞 | |
| CVE-2015-9459 | WordPress searchterms-tagging-2插件跨站脚本漏洞 | |
| CVE-2015-9465 | WordPress yet-another-stars-rating插件SQL注入漏洞 | |
| CVE-2015-9466 | WordPress wti-like-post插件SQL注入漏洞 | |
| CVE-2015-9467 | WordPress broken-link-manager插件SQL注入漏洞 | |
| CVE-2015-9468 | WordPress broken-link-manager插件跨站脚本漏洞 | |
| CVE-2015-9469 | WordPress content-grabber插件跨站脚本漏洞 | |
| CVE-2015-9470 | WordPress history-collection插件路径遍历漏洞 | |
| CVE-2015-9463 | WordPress s3bubble-amazon-s3-audio-streaming插件路径遍历漏洞 | |
| CVE-2015-9471 | WordPress dzs-zoomsounds插件代码问题漏洞 | |
| CVE-2015-9472 | WordPress incoming-links插件跨站脚本漏洞 |
Showing top 20 of 59 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2019-5527
No comments yet