Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware vcenter server 5.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-4241
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0 and 10.3.6.0 allows remote malicious users to affect integrity via vectors related to WLS - Web Services.
Vmware Vcenter Server 5.1
Vmware Vcenter Server 5.0
Vmware Esxi 5.1
Vmware Vcenter Server 5.5
Vmware Vcenter Server Appliance 5.1
Oracle Fusion Middleware 10.0.2
Oracle Fusion Middleware 10.3.6
1 Github repository
NA
CVE-2013-5973
VMware ESXi 4.0 up to and including 5.5 and ESX 4.0 and 4.1 allow local users to read or modify arbitrary files by leveraging the Virtual Machine Power User or Resource Pool Administrator role for a vCenter Server Add Existing Disk action with a (1) -flat, (2) -rdm, or (3) -rdmp ...
Vmware Esx 4.0
Vmware Esx 4.1
Vmware Esxi 4.0
Vmware Esxi 5.0
Vmware Esxi 4.1
Vmware Esxi 5.1
NA
CVE-2013-5971
Session fixation vulnerability in the vSphere Web Client Server in VMware vCenter Server 5.0 before Update 3 allows remote malicious users to hijack web sessions and gain privileges via unspecified vectors.
Vmware Vcenter Server 4.0.0.12305
Vmware Vcenter Server 4.0.0.10021
Vmware Vcenter Server 5.0
Vmware Vcenter Server
Vmware Vcenter Server 4.1
Vmware Vcenter Server 4.1.0.17435
Vmware Vcenter Server 4.1.0.12319
Vmware Vcenter Server 4.1.0.14766
NA
CVE-2013-3107
VMware vCenter Server 5.1 before Update 1, when anonymous LDAP binding for Active Directory is enabled, allows remote malicious users to bypass authentication by providing a valid username in conjunction with an empty password.
Vmware Vcenter Server Appliance 5.0
NA
CVE-2013-1659
VMware vCenter Server 4.0 before Update 4b, 5.0 before Update 2, and 5.1 prior to 5.1.0b; VMware ESXi 3.5 up to and including 5.1; and VMware ESX 3.5 up to and including 4.1 do not properly implement the Network File Copy (NFC) protocol, which allows man-in-the-middle malicious u...
Vmware Vcenter Server 4.0
Vmware Vcenter Server Appliance 5.1.0a
Vmware Vcenter Server Appliance 5.1
Vmware Vcenter Server 5.0
Vmware Esxi 5.1
Vmware Esxi 5.0
Vmware Esxi 4.0
Vmware Esxi 4.1
Vmware Esxi 3.5
NA
CVE-2012-6326
VMware vCenter Server 4.1 before Update 3 and 5.0 before Update 2, and vCSA 5.0 before Update 2, allows remote malicious users to cause a denial of service (disk consumption) via vectors that trigger large log entries.
Vmware Vcenter Server 4.1
Vmware Vcenter Server 5.0
Vmware Vcenter Server Appliance 5.0
NA
CVE-2012-6325
VMware vCenter Server Appliance (vCSA) 5.0 before Update 2 does not properly parse XML documents, which allows remote authenticated users to read arbitrary files via unspecified vectors.
Vmware Vcenter Server Appliance
Vmware Vcenter Server Appliance 5.0
NA
CVE-2012-6324
Directory traversal vulnerability in VMware vCenter Server Appliance (vCSA) 5.0 before Update 2 and 5.1 before Patch 1 allows remote authenticated users to read arbitrary files via unspecified vectors.
Vmware Vcenter Server Appliance 5.1
Vmware Vcenter Server Appliance 5.0
NA
CVE-2012-5050
Cross-site scripting (XSS) vulnerability in the server in VMware vCenter Operations (aka vCOps) prior to 5.0.x allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Vmware Vcenter Operations
Vmware Vcenter Operations 1.0.1
Vmware Vcenter Operations 1.0.0
NA
CVE-2009-3731
Multiple cross-site scripting (XSS) vulnerabilities in WebWorks Help 2.0 up to and including 5.0 in VMware vCenter 4.0 before Update 1 Build 208156; VMware Server 2.0.2; VMware ESX 4.0; VMware Lab Manager 2.x; VMware vCenter Lab Manager 3.x and 4.x prior to 4.0.1; VMware Stage Ma...
Webworks Epublisher 2009.2
Webworks Epublisher 2009.1
Webworks Epublisher 9.1
Webworks Epublisher 9.0
Webworks Publisher 7.0
Webworks Publisher 8.0
Webworks Epublisher 2008.4
Webworks Epublisher 2008.3
Webworks Help 2.0
Webworks Help 3.0
Webworks Epublisher 2008.2
Webworks Epublisher 2008.1
Webworks Help 4.0
Webworks Help 5.0
Webworks Epublisher 9.3
Webworks Epublisher 9.2
Webworks Publisher 2003
Webworks Publisher 6.0
Vmware Vcenter 4.0
Vmware Esx Server 4.0
Vmware Lab Manager 2.0
Vmware Stage Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2