Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware tools vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv2
CVE-2020-3941
The repair operation of VMware Tools for Windows 10.x.y has a race condition which may allow for privilege escalation in the Virtual Machine where Tools is installed. This vulnerability is not present in VMware Tools 11.x.y since the affected functionality is not present in VMwar...
Vmware Tools
1 Article
3.7
CVSSv2
CVE-2015-5191
VMware Tools before 10.0.9 contains multiple file system races in libDeployPkg, related to the use of hard-coded paths under /tmp. Successful exploitation of this issue may result in a local privilege escalation. CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Vmware Tools
2.1
CVSSv2
CVE-2020-3972
VMware Tools for macOS (11.x.x and prior prior to 11.1.1) contains a denial-of-service vulnerability in the Host-Guest File System (HGFS) implementation. Successful exploitation of this issue may allow attackers with non-admin privileges on guest macOS virtual machines to create ...
Vmware Tools
1 Article
NA
CVE-2021-31693
The 10Web Photo Gallery plugin up to and including 1.5.68 for WordPress allows XSS via album_gallery_id_0, bwg_album_search_0, and type_0 for bwg_frontend_data. NOTE: other parameters are covered by CVE-2021-24291, CVE-2021-25041, and CVE-2021-46889. NOTE: VMware information, pre...
Vmware Tools
NA
CVE-2023-20867
A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine.
Vmware Tools
3 Articles
7.2
CVSSv2
CVE-2022-22943
VMware Tools for Windows (11.x.y and 10.x.y before 12.0.0) contains an uncontrolled search path vulnerability. A malicious actor with local administrative privileges in the Windows guest OS, where VMware Tools is installed, may be able to execute code with system privileges in th...
Vmware Tools
3.6
CVSSv2
CVE-2022-22977
VMware Tools for Windows(12.0.0, 11.x.y and 10.x.y) contains an XML External Entity (XXE) vulnerability. A malicious actor with non-administrative local user privileges in the Windows guest OS, where VMware Tools is installed, may exploit this issue leading to a denial-of-service...
Vmware Tools
4.4
CVSSv2
CVE-2016-5330
Untrusted search path vulnerability in the HGFS (aka Shared Folders) feature in VMware Tools 10.0.5 in VMware ESXi 5.0 up to and including 6.0, VMware Workstation Pro 12.1.x prior to 12.1.1, VMware Workstation Player 12.1.x prior to 12.1.1, and VMware Fusion 8.1.x prior to 8.1.1 ...
Vmware Workstation Player
Vmware Workstation Pro
Vmware Esxi
Vmware Fusion
Vmware Tools
1 EDB exploit
4.7
CVSSv2
CVE-2014-4200
vm-support 0.88 in VMware Tools, as distributed with VMware Workstation up to and including 10.0.3 and other products, uses 0644 permissions for the vm-support archive, which allows local users to obtain sensitive information by extracting files from this archive.
Vmware Workstation 10.0.2
Vmware Workstation
Vmware Workstation 10.0
Vmware Workstation 10.0.1
Vmware Vm-support 0.88
Vmware Tools
6.3
CVSSv2
CVE-2014-4199
vm-support 0.88 in VMware Tools, as distributed with VMware Workstation up to and including 10.0.3 and other products, allows local users to write to arbitrary files via a symlink attack on a file in /tmp.
Vmware Workstation 10.0.1
Vmware Workstation 10.0.2
Vmware Workstation
Vmware Tools
Vmware Workstation 10.0
Vmware Vm-support 0.88
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »