Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware esxi 5.5 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2018-6972
VMware ESXi (6.7 before ESXi670-201806401-BG, 6.5 before ESXi650-201806401-BG, 6.0 before ESXi600-201806401-BG and 5.5 before ESXi550-201806401-BG), Workstation (14.x prior to 14.1.2), and Fusion (10.x prior to 10.1.2) contain a denial-of-service vulnerability due to NULL pointer...
Vmware Workstation
Vmware Fusion
Vmware Esxi 6.0
Vmware Esxi 6.5
Vmware Esxi 6.7
Vmware Esxi 5.5
6.1
CVSSv3
CVE-2017-4940
The ESXi Host Client in VMware ESXi (6.5 before ESXi650-201712103-SG, 5.5 before ESXi600-201711103-SG and 5.5 before ESXi550-201709102-SG) contains a vulnerability that may allow for stored cross-site scripting (XSS). An attacker can exploit this vulnerability by injecting Javasc...
Vmware Esxi 6.0
Vmware Esxi 6.5
Vmware Esxi 5.5
8.8
CVSSv3
CVE-2017-4941
VMware ESXi (6.0 before ESXi600-201711101-SG, 5.5 ESXi550-201709101-SG), Workstation (12.x prior to 12.5.8), and Fusion (8.x prior to 8.5.9) contain a vulnerability that could allow an authenticated VNC session to cause a stack overflow via a specific set of VNC packets. Successf...
Vmware Fusion
Vmware Workstation
Vmware Esxi 5.5
Vmware Esxi 6.0
5.5
CVSSv3
CVE-2017-4925
VMware ESXi 6.5 without patch ESXi650-201707101-SG, ESXi 6.0 without patch ESXi600-201706101-SG, ESXi 5.5 without patch ESXi550-201709101-SG, Workstation (12.x prior to 12.5.3), Fusion (8.x prior to 8.5.4) contain a NULL pointer dereference vulnerability. This issue occurs when h...
Vmware Esxi 6.0
Vmware Esxi 6.5
Vmware Esxi 5.5
Vmware Workstation
Vmware Workstation Pro
Vmware Fusion
8.8
CVSSv3
CVE-2017-4904
The XHCI controller in VMware ESXi 6.5 without patch ESXi650-201703410-SG, 6.0 U3 without patch ESXi600-201703401-SG, 6.0 U2 without patch ESXi600-201703403-SG, 6.0 U1 without patch ESXi600-201703402-SG, and 5.5 without patch ESXi550-201703401-SG; Workstation Pro / Player 12.x be...
Vmware Fusion
Vmware Fusion Pro
Vmware Esxi 6.0
Vmware Esxi 6.5
Vmware Esxi 5.5
Vmware Workstation Player
Vmware Workstation Pro
8.8
CVSSv3
CVE-2017-4903
VMware ESXi 6.5 without patch ESXi650-201703410-SG, 6.0 U3 without patch ESXi600-201703401-SG, 6.0 U2 without patch ESXi600-201703403-SG, 6.0 U1 without patch ESXi600-201703402-SG, and 5.5 without patch ESXi550-201703401-SG; Workstation Pro / Player 12.x before 12.5.5; and Fusion...
Vmware Esxi 6.0
Vmware Esxi 6.5
Vmware Esxi 5.5
Vmware Workstation Player
Vmware Workstation Pro
Vmware Fusion
Vmware Fusion Pro
8.8
CVSSv3
CVE-2017-4902
VMware ESXi 6.5 without patch ESXi650-201703410-SG and 5.5 without patch ESXi550-201703401-SG; Workstation Pro / Player 12.x before 12.5.5; and Fusion Pro / Fusion 8.x before 8.5.6 have a Heap Buffer Overflow in SVGA. This issue may allow a guest to execute code on the host.
Vmware Esxi 6.5
Vmware Esxi 5.5
Vmware Workstation Player
Vmware Workstation Pro
Vmware Fusion
Vmware Fusion Pro
5.5
CVSSv3
CVE-2017-4905
VMware ESXi 6.5 without patch ESXi650-201703410-SG, 6.0 U3 without patch ESXi600-201703401-SG, 6.0 U2 without patch ESXi600-201703403-SG, 6.0 U1 without patch ESXi600-201703402-SG, 5.5 without patch ESXi550-201703401-SG; Workstation Pro / Player 12.x before 12.5.5; and Fusion Pro...
Vmware Fusion
Vmware Fusion Pro
Vmware Esxi 6.0
Vmware Esxi 6.5
Vmware Esxi 5.5
Vmware Workstation Player
Vmware Workstation Pro
1 EDB exploit
5.8
CVSSv3
CVE-2016-7458
VMware vSphere Client 5.5 before U3e and 6.0 before U2a allows remote vCenter Server and ESXi instances to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
Vmware Vsphere Client 5.5
Vmware Vsphere Client 6.0
5.4
CVSSv3
CVE-2016-7463
Cross-site scripting (XSS) vulnerability in the Host Client in VMware vSphere Hypervisor (aka ESXi) 5.5 and 6.0 allows remote authenticated users to inject arbitrary web script or HTML via a crafted VM.
Vmware Esxi 5.5
Vmware Esxi 6.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »