Primary

Context

VMware Workstation and Fusion NAT Vulnerability Allowing Interception of Network Connections Between Guest VMs

Vulnerability

Patched

A logic flaw has been identified in VMware Workstation and Fusion that affects the management of network packets. This vulnerability allows a malicious actor with administrative privileges on a guest VM to interrupt or intercept network connections of other guest VMs. The issue is present in VMware Workstation versions 17.x and 25H2, as well as VMware Fusion versions 13.x and 25H2.

Impact

Exploitation of this vulnerability could disrupt or intercept network connections between guest VMs, potentially leading to unauthorized access or manipulation of network traffic.

Remediation

Users can upgrade to VMware Workstation or Fusion Version 25H2U1 to address this vulnerability.

Added: Feb 26, 2026, 7:42 PM

Updated: Feb 26, 2026, 7:42 PM

Vulnerability Rating

Custom Algorithm

spread

5.4

impact

0.4

exploitability

2.4

remediation

7.7

relevance

3.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.4

impact

0.4

exploitability

2.4

remediation

7.7

relevance

3.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

VMware Workstation and Fusion NAT Vulnerability Allowing Interception of Network Connections Between Guest VMs

Vulnerability

Impact

Remediation

Affected Products

VMware Workstation

VMware Fusion

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating