Known attack vectors: A malicious actor with administrative privileges on a Guest VM may be able to interrupt or intercept network connections of other Guest VM's.
Resolution: To remediate CVE-2026-22715 please upgrade to VMware Workstation or Fusion Version 25H2U1
No advisories yet.
Solution
To remediate CVE-2026-22715 please upgrade to VMwate Workstation or Fusion Version 25H2U1
Workaround
No workaround given by the vendor.
Fri, 27 Feb 2026 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-923 | |
| Metrics |
ssvc
|
Fri, 27 Feb 2026 09:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Vmware
Vmware fusion Vmware workstation |
|
| Vendors & Products |
Vmware
Vmware fusion Vmware workstation |
Thu, 26 Feb 2026 19:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | VMWare Workstation and Fusion contain a logic flaw in the management of network packets. Known attack vectors: A malicious actor with administrative privileges on a Guest VM may be able to interrupt or intercept network connections of other Guest VM's. Resolution: To remediate CVE-2026-22715 please upgrade to VMware Workstation or Fusion Version 25H2U1 | |
| Title | VMware Workstation/Fusion NAT vulnerability | |
| References |
| |
| Metrics |
cvssV3_1
|
Projects
Sign in to view the affected projects.
Status: PUBLISHED
Assigner: vmware
Published:
Updated: 2026-02-27T17:55:10.640Z
Reserved: 2026-01-09T06:54:36.840Z
Link: CVE-2026-22715
Updated: 2026-02-27T17:54:58.149Z
Status : Awaiting Analysis
Published: 2026-02-26T19:32:37.893
Modified: 2026-02-27T18:16:11.667
Link: CVE-2026-22715
No data.
OpenCVE Enrichment
Updated: 2026-02-27T09:07:13Z