Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware remote console vulnerabilities and exploits
(subscribe to this query)
7
CVSSv3
CVE-2020-3957
VMware Fusion (11.x prior to 11.5.5), VMware Remote Console for Mac (11.x and prior) and VMware Horizon Client for Mac (5.x and prior) contain a local privilege escalation vulnerability due to a Time-of-check Time-of-use (TOCTOU) issue in the service opener. Successful exploitati...
Vmware Fusion
Vmware Horizon Client
Vmware Remote Console
7.8
CVSSv3
CVE-2019-5543
For VMware Horizon Client for Windows (5.x and prior prior to 5.3.0), VMware Remote Console for Windows (10.x prior to 11.0.0), VMware Workstation for Windows (15.x prior to 15.5.2) the folder containing configuration files for the VMware USB arbitration service was found to be w...
Vmware Horizon Client
Vmware Remote Console
Vmware Workstation
1 Article
7.8
CVSSv3
CVE-2020-3950
VMware Fusion (11.x prior to 11.5.2), VMware Remote Console for Mac (11.x and prior prior to 11.0.1) and Horizon Client for Mac (5.x and prior prior to 5.4.0) contain a privilege escalation vulnerability due to improper use of setuid binaries. Successful exploitation of this issu...
Vmware Fusion
Vmware Horizon Client
Vmware Remote Console
1 EDB exploit
7.8
CVSSv3
CVE-2020-3974
VMware Fusion (11.x prior to 11.5.5), VMware Remote Console for Mac (11.x and prior prior to 11.2.0 ) and Horizon Client for Mac (5.x and prior prior to 5.4.3) contain a privilege escalation vulnerability due to improper XPC Client validation. Successful exploitation of this issu...
Vmware Fusion
Vmware Horizon Client
Vmware Remote Console
7.8
CVSSv3
CVE-2021-21999
VMware Tools for Windows (11.x.y before 11.2.6), VMware Remote Console for Windows (12.x before 12.0.1) , VMware App Volumes (2.x before 2.18.10 and 4 before 2103) contain a local privilege escalation vulnerability. An attacker with normal access to a virtual machine may exploit ...
Vmware Remote Console
Vmware App Volumes
Vmware Tools
8.8
CVSSv3
CVE-2019-5527
ESXi, Workstation, Fusion, VMRC and Horizon Client contain a use-after-free vulnerability in the virtual sound device. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 8.5.
Vmware Workstation
Vmware Horizon
Vmware Remote Console
Vmware Fusion
Vmware Esxi 6.0
Vmware Esxi 6.5
Vmware Esxi 6.7
9.8
CVSSv3
CVE-2016-5711
NetApp Virtual Storage Console for VMware vSphere prior to 6.2.1 uses a non-unique certificate, which allows remote malicious users to conduct man-in-the-middle attacks via unspecified vectors.
Netapp Virtual Storage Console For Vmware Vsphere
NA
CVE-2009-3732
Format string vulnerability in vmware-vmrc.exe build 158248 in VMware Remote Console (aka VMrc) allows remote malicious users to execute arbitrary code via unspecified vectors.
Vmware Ace
Vmware Ace 2.6
Vmware Player
Vmware Player 3.0
Vmware Server
Vmware Workstation
Vmware Workstation 7.0
1 EDB exploit
NA
CVE-2013-6366
The Groovy script console in VMware Hyperic HQ 4.6.6 allows remote authenticated administrators to execute arbitrary code via a Runtime.getRuntime().exec call.
Vmware Hyperic Hq 4.6.6
1 EDB exploit
NA
CVE-2010-1137
Cross-site scripting (XSS) vulnerability in WebAccess in VMware VirtualCenter 2.0.2 and 2.5 and VMware ESX 3.0.3 and 3.5, and the Server Console in VMware Server 1.0, allows remote malicious users to inject arbitrary web script or HTML via the name of a virtual machine.
Vmware Virtualcenter 2.0.2
Vmware Virtualcenter 2.5
Vmware Server 1.0
Vmware Esx Server 3.0.3
Vmware Esx Server 3.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »