Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware esxi vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2017-4924
VMware ESXi (ESXi 6.5 without patch ESXi650-201707101-SG), Workstation (12.x prior to 12.5.7) and Fusion (8.x prior to 8.5.8) contain an out-of-bounds write vulnerability in SVGA device. This issue may allow a guest to execute code on the host.
Vmware Fusion
Vmware Workstation Pro
Vmware Esxi 6.5
6.4
CVSSv2
CVE-2014-8370
VMware Workstation 10.x prior to 10.0.5, VMware Player 6.x prior to 6.0.5, VMware Fusion 6.x prior to 6.0.5, and VMware ESXi 5.0 up to and including 5.5 allow host OS users to gain host OS privileges or cause a denial of service (arbitrary write to a file) by modifying a configur...
Vmware Player 6.0
Vmware Player 6.0.3
Vmware Player 6.0.4
Vmware Player 6.0.1
Vmware Player 6.0.2
Vmware Fusion 6.0.1
Vmware Fusion 6.0.2
Vmware Fusion 6.0
Vmware Fusion 6.0.3
Vmware Fusion 6.0.4
Vmware Workstation 10.0.4
Vmware Workstation 10.0.2
Vmware Workstation 10.0.3
Vmware Workstation 10.0
Vmware Workstation 10.0.1
Vmware Esxi 5.0
Vmware Esxi 5.1
Vmware Esxi 5.5
4.7
CVSSv2
CVE-2008-4914
Unspecified vulnerability in VMware ESXi 3.5 before ESXe350-200901401-I-SG and ESX 3.5 before ESX350-200901401-SG allows local administrators to cause a denial of service (host crash) via a snapshot with a malformed VMDK delta disk.
Vmware Esx 3.5
Vmware Esxi 3.5
4.6
CVSSv2
CVE-2021-22042
VMware ESXi contains an unauthorized access vulnerability due to VMX having access to settingsd authorization tickets. A malicious actor with privileges within the VMX process only, may be able to access settingsd service running as a high privileged user.
Vmware Cloud Foundation
Vmware Esxi 7.0
5
CVSSv2
CVE-2012-5703
The vSphere API in VMware ESXi 4.1 and ESX 4.1 allows remote malicious users to cause a denial of service (host daemon crash) via an invalid value in a (1) RetrieveProp or (2) RetrievePropEx SOAP request.
Vmware Esx 4.1
Vmware Esxi 4.1
9
CVSSv2
CVE-2012-1517
The VMX process in VMware ESXi 4.1 and ESX 4.1 does not properly handle RPC commands, which allows guest OS users to cause a denial of service (memory overwrite and process crash) or possibly execute arbitrary code on the host OS via vectors involving function pointers.
Vmware Esxi 4.1
Vmware Esx 4.1
4.3
CVSSv2
CVE-2016-5331
CRLF injection vulnerability in VMware vCenter Server 6.0 before U2 and ESXi 6.0 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
Vmware Vcenter Server
Vmware Esxi 6.0
9
CVSSv2
CVE-2008-2097
Buffer overflow in the openwsman management service in VMware ESXi 3.5 and ESX 3.5 allows remote authenticated users to gain privileges via an "invalid Content-Length."
Vmware Esx 3.5
Vmware Esxi 3.5
7.2
CVSSv2
CVE-2008-4917
Unspecified vulnerability in VMware Workstation 5.5.8 and previous versions, and 6.0.5 and previous versions 6.x versions; VMware Player 1.0.8 and previous versions, and 2.0.5 and previous versions 2.x versions; VMware Server 1.0.9 and previous versions; VMware ESXi 3.5; and VMwa...
Vmware Player
Vmware Server
Vmware Esx
Vmware Esxi 3.5
Vmware Workstation
7.2
CVSSv2
CVE-2013-1406
The Virtual Machine Communication Interface (VMCI) implementation in vmci.sys in VMware Workstation 8.x prior to 8.0.5 and 9.x prior to 9.0.1 on Windows, VMware Fusion 4.1 prior to 4.1.4 and 5.0 prior to 5.0.2, VMware View 4.x prior to 4.6.2 and 5.x prior to 5.1.2 on Windows, VMw...
Vmware Workstation 8.0.1.27038
Vmware Workstation 8.0.2
Vmware Workstation 8.0.3
Vmware Workstation 8.0.4
Vmware Workstation 8.0.0.18997
Vmware Workstation 8.0.1
Vmware Workstation 8.0
Vmware Workstation 9.0
Vmware Fusion 4.1
Vmware Fusion 4.1.1
Vmware Fusion 4.1.2
Vmware Fusion 4.1.3
Vmware Fusion 5.0
Vmware Fusion 5.0.1
Vmware View 4.0.0
Vmware View 5.1.0
Vmware View 5.1.1
Vmware View 5.0.0
Vmware View 5.0.1
Vmware View 4.5
Vmware View 4.6.0
Vmware View 4.6.1
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »