Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
esxi vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-31696
VMware ESXi contains a memory corruption vulnerability that exists in the way it handles a network socket. A malicious actor with local access to ESXi may exploit this issue to corrupt memory leading to an escape of the ESXi sandbox.
Vmware Esxi 6.5
Vmware Esxi 6.7
Vmware Cloud Foundation
Vmware Esxi 7.0
Vmware Cloud Foundation 4.4.1
Vmware Cloud Foundation 4.4.1.1
Vmware Cloud Foundation 4.4
Vmware Cloud Foundation 4.5
Vmware Cloud Foundation 4.76
Vmware Cloud Foundation 3.11
Vmware Cloud Foundation 3.10
Vmware Cloud Foundation 4.3.11
1 Article
5.3
CVSSv3
CVE-2022-31698
The vCenter Server contains a denial-of-service vulnerability in the content library service. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to trigger a denial-of-service condition by sending a specially crafted header.
Vmware Vcenter Server 6.5
Vmware Vcenter Server 6.7
Vmware Vcenter Server 7.0
Vmware Cloud Foundation 4.0
Vmware Cloud Foundation 4.0.1
Vmware Cloud Foundation 3.0
Vmware Cloud Foundation 3.0.1
Vmware Cloud Foundation 3.0.1.1
Vmware Cloud Foundation 3.5
Vmware Cloud Foundation 3.5.1
Vmware Cloud Foundation 3.7
Vmware Cloud Foundation 3.7.1
Vmware Cloud Foundation 3.7.2
Vmware Cloud Foundation 3.8
Vmware Cloud Foundation 3.8.1
Vmware Cloud Foundation 3.9
Vmware Cloud Foundation 3.9.1
Vmware Cloud Foundation 3.10
Vmware Cloud Foundation 4.1
Vmware Cloud Foundation 4.2.1
Vmware Cloud Foundation 4.1.0.1
Vmware Cloud Foundation 3.11
1 Article
5.5
CVSSv3
CVE-2022-31697
The vCenter Server contains an information disclosure vulnerability due to the logging of credentials in plaintext. A malicious actor with access to a workstation that invoked a vCenter Server Appliance ISO operation (Install/Upgrade/Migrate/Restore) can access plaintext password...
Vmware Vcenter Server 6.5
Vmware Vcenter Server 6.7
Vmware Vcenter Server 7.0
Vmware Cloud Foundation
1 Article
3.3
CVSSv3
CVE-2022-31699
VMware ESXi contains a heap-overflow vulnerability. A malicious local actor with restricted privileges within a sandbox process may exploit this issue to achieve a partial information disclosure.
Vmware Esxi 6.5
Vmware Esxi 6.7
Vmware Esxi 7.0
Vmware Cloud Foundation 4.0.1
Vmware Cloud Foundation 3.0.1
Vmware Cloud Foundation 3.0.1.1
Vmware Cloud Foundation 3.5
Vmware Cloud Foundation 3.5.1
Vmware Cloud Foundation 3.7
Vmware Cloud Foundation 3.7.1
Vmware Cloud Foundation 3.7.2
Vmware Cloud Foundation 3.8
Vmware Cloud Foundation 3.8.1
Vmware Cloud Foundation 3.9
Vmware Cloud Foundation 3.9.1
Vmware Cloud Foundation 3.10
Vmware Cloud Foundation 4.1
Vmware Cloud Foundation 4.2.1
Vmware Cloud Foundation 4.1.0.1
Vmware Cloud Foundation 3.0
Vmware Cloud Foundation 4.0
Vmware Cloud Foundation 3.11
1 Article
9.1
CVSSv3
CVE-2022-31680
The vCenter Server contains an unsafe deserialisation vulnerability in the PSC (Platform services controller). A malicious actor with admin access on vCenter server may exploit this issue to execute arbitrary code on the underlying operating system that hosts the vCenter Server.
Vmware Vcenter Server 6.5
Vmware Vcenter Server
1 Article
6.5
CVSSv3
CVE-2022-31681
VMware ESXi contains a null-pointer deference vulnerability. A malicious actor with privileges within the VMX process only, may create a denial of service condition on the host.
Vmware Esxi 7.0
Vmware Esxi
Vmware Cloud Foundation
Vmware Cloud Foundation 4.4.1
Vmware Cloud Foundation 4.4.1.1
Vmware Cloud Foundation 4.4
5.5
CVSSv3
CVE-2022-26373
Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
Intel Xeon Platinum 8253 Firmware -
Intel Xeon Platinum 8256 Firmware -
Intel Xeon Platinum 8260 Firmware -
Intel Xeon Platinum 8260l Firmware -
Intel Xeon Platinum 8260m Firmware -
Intel Xeon Platinum 8260y Firmware -
Intel Xeon Platinum 8268 Firmware -
Intel Xeon Platinum 8270 Firmware -
Intel Xeon Platinum 8276 Firmware -
Intel Xeon Platinum 8276l Firmware -
Intel Xeon Platinum 8276m Firmware -
Intel Xeon Platinum 8280 Firmware -
Intel Xeon Platinum 8280l Firmware -
Intel Xeon Platinum 8280m Firmware -
Intel Xeon Platinum 9220 Firmware -
Intel Xeon Platinum 9221 Firmware -
Intel Xeon Platinum 9222 Firmware -
Intel Xeon Platinum 9242 Firmware -
Intel Xeon Platinum 9282 Firmware -
Intel Xeon Gold 5215 Firmware -
Intel Xeon Gold 5215l Firmware -
Intel Xeon Gold 5215m Firmware -
6.5
CVSSv3
CVE-2022-23825
Aliases in the branch predictor may cause some AMD processors to predict the wrong branch type potentially leading to information disclosure.
Debian Debian Linux 11.0
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Amd Athlon X4 750 Firmware -
Amd Athlon X4 760k Firmware -
Amd Athlon X4 830 Firmware -
Amd Athlon X4 835 Firmware -
Amd Athlon X4 840 Firmware -
Amd Athlon X4 845 Firmware -
Amd Athlon X4 860k Firmware -
Amd Athlon X4 870k Firmware -
Amd Athlon X4 880k Firmware -
Amd Athlon X4 940 Firmware -
Amd Athlon X4 950 Firmware -
Amd Athlon X4 970 Firmware -
Amd Ryzen Threadripper Pro 3995wx Firmware -
Amd Ryzen Threadripper Pro 3795wx Firmware -
Amd Ryzen Threadripper Pro 3955wx Firmware -
Amd Ryzen Threadripper Pro 3945wx Firmware -
Amd Ryzen Threadripper Pro 5955wx Firmware -
Amd Ryzen Threadripper Pro 5965wx Firmware -
Amd Ryzen Threadripper Pro 5945wx Firmware -
2 Articles
NA
CVE-2022-28693
A bug in the IMA subsystem was discovered which would incorrectly allow kexec to be used when kernel lockdown was enabled (CVE-2022-21505) A flaw was found in hw. Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain m...
1 Article
6.5
CVSSv3
CVE-2022-29901
Intel microprocessor generations 6 to 8 are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code exe...
Intel Core I7-6500u Firmware -
Intel Core I7-6510u Firmware -
Intel Core I7-6560u Firmware -
Intel Core I7-6567u Firmware -
Intel Core I7-6600u Firmware -
Intel Core I7-6650u Firmware -
Intel Core I7-6660u Firmware -
Intel Core I7-6700 Firmware -
Intel Core I7-6700hq Firmware -
Intel Core I7-6700k Firmware -
Intel Core I7-6700t Firmware -
Intel Core I7-6700te Firmware -
Intel Core I7-6770hq Firmware -
Intel Core I7-6820eq Firmware -
Intel Core I7-6820hk Firmware -
Intel Core I7-6820hq Firmware -
Intel Core I7-6822eq Firmware -
Intel Core I7-6870hq Firmware -
Intel Core I7-6920hq Firmware -
Intel Core I7-6970hq Firmware -
Intel Core I7-8550u Firmware -
Intel Core I7-8559u Firmware -
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »