Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware vsphere client 5.0 vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2014-1209
VMware vSphere Client 4.0, 4.1, 5.0 before Update 3, and 5.1 before Update 2 does not properly validate updates to Client files, which allows remote malicious users to trigger the downloading and execution of an arbitrary program via unspecified vectors.
Vmware Vsphere Client 4.1
Vmware Vsphere Client 5.0
Vmware Vsphere Client 5.1
Vmware Vsphere Client 4.0
516
VMScore
CVE-2014-1210
VMware vSphere Client 5.0 before Update 3 and 5.1 before Update 2 does not properly validate X.509 certificates, which allows man-in-the-middle malicious users to spoof SSL servers via a crafted certificate.
Vmware Vsphere Client 5.0
Vmware Vsphere Client 5.1
383
VMScore
CVE-2012-1512
Cross-site scripting (XSS) vulnerability in the internal browser in vSphere Client in VMware vSphere 4.1 before Update 2 and 5.0 before Update 1 allows remote malicious users to inject arbitrary web script or HTML via a crafted log-file entry.
Vmware Vsphere
383
VMScore
CVE-2016-2078
Cross-site scripting (XSS) vulnerability in the Web Client in VMware vCenter Server 5.1 before update 3d, 5.5 before update 3d, and 6.0 before update 2 on Windows allows remote malicious users to inject arbitrary web script or HTML via the flashvars parameter.
Vmware Vcenter Server 6.0
Vmware Vcenter Server 5.5
Vmware Vcenter Server 5.1
Vmware Vcenter Server 5.0
383
VMScore
CVE-2015-6931
Cross-site scripting (XSS) vulnerability in the vSphere Web Client in VMware vCenter Server 5.0 before U3g, 5.1 before U3d, and 5.5 before U2d allows remote malicious users to inject arbitrary web script or HTML via a crafted URL.
Vmware Vcenter Server 5.1
Vmware Vcenter Server 5.5
Vmware Vcenter Server 5.0
605
VMScore
CVE-2013-5971
Session fixation vulnerability in the vSphere Web Client Server in VMware vCenter Server 5.0 before Update 3 allows remote malicious users to hijack web sessions and gain privileges via unspecified vectors.
Vmware Vcenter Server 4.0.0.12305
Vmware Vcenter Server 4.0.0.10021
Vmware Vcenter Server 5.0
Vmware Vcenter Server
Vmware Vcenter Server 4.1
Vmware Vcenter Server 4.1.0.17435
Vmware Vcenter Server 4.1.0.12319
Vmware Vcenter Server 4.1.0.14766
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started