Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
virtual desktop infrastructure vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2023-39199
Cryptographic issues with In-Meeting Chat for some Zoom clients may allow a privileged user to conduct an information disclosure via network access.
Zoom Meetings
Zoom Virtual Desktop Infrastructure
Zoom Rooms
Zoom Zoom
NA
CVE-2009-3923
The VirtualBox 2.0.8 and 2.0.10 web service in Sun Virtual Desktop Infrastructure (VDI) 3.0 does not require authentication, which allows remote malicious users to obtain unspecified access via vectors involving requests to an Apache HTTP Server.
Sun Virtual Desktop Infrastructure 3.0
Sun Virtualbox 2.0.8
Sun Virtualbox 2.0.10
6.5
CVSSv3
CVE-2023-39215
Improper authentication in Zoom clients may allow an authenticated user to conduct a denial of service via network access.
Zoom Meeting Software Development Kit
Zoom Zoom
Zoom Virtual Desktop Infrastructure
9.6
CVSSv3
CVE-2022-28763
The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.2 is susceptible to a URL parsing vulnerability. If a malicious Zoom meeting URL is opened, the malicious link may direct the user to connect to an arbitrary network address, leading to...
Zoom Virtual Desktop Infrastructure
Zoom Meetings
Zoom Rooms For Conference Rooms
6.5
CVSSv3
CVE-2023-39205
Improper conditions check in Zoom Team Chat for Zoom clients may allow an authenticated user to conduct a denial of service via network access.
Zoom Meetings
Zoom Virtual Desktop Infrastructure
Zoom Zoom
Zoom Video Software Development Kit
7.5
CVSSv3
CVE-2023-39204
Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.
Zoom Zoom
Zoom Virtual Desktop Infrastructure
Zoom Video Software Development Kit
Zoom Meetings
Zoom Rooms
7.5
CVSSv3
CVE-2023-39206
Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.
Zoom Meetings
Zoom Virtual Desktop Infrastructure
Zoom Rooms
Zoom Zoom
Zoom Video Software Development Kit
6.5
CVSSv3
CVE-2023-49646
Improper authentication in some Zoom clients before version 5.16.5 may allow an authenticated user to conduct a denial of service via network access.
Zoom Zoom
Zoom Virtual Desktop Infrastructure
Zoom Meeting Software Development Kit
Zoom Video Software Development Kit
8.8
CVSSv3
CVE-2023-43586
Path traversal in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom SDKs for Windows may allow an authenticated user to conduct an escalation of privilege via network access.
Zoom Meeting Software Development Kit
Zoom Video Software Development Kit
Zoom Virtual Desktop Infrastructure
Zoom Zoom
9.8
CVSSv3
CVE-2015-4852
The WLS Security component in Oracle WebLogic Server 10.3.6.0, 12.1.2.0, 12.1.3.0, and 12.2.1.0 allows remote malicious users to execute arbitrary commands via a crafted serialized Java object in T3 protocol traffic to TCP port 7001, related to oracle_common/modules/com.bea.core....
Oracle Virtual Desktop Infrastructure
Oracle Weblogic Server 12.2.1.0.0
Oracle Weblogic Server 12.1.3.0.0
Oracle Weblogic Server 10.3.6.0.0
Oracle Weblogic Server 12.1.2.0.0
Oracle Storagetek Tape Analytics Sw Tool 2.3
2 EDB exploits
13 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »