Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
horizon vulnerabilities and exploits
(subscribe to this query)
6.9
CVSSv2
CVE-2017-4910
VMware Workstation (12.x before 12.5.3) and Horizon View Client (4.x before 4.4.0) contain multiple out-of-bounds read vulnerabilities in JPEG2000 parser in the TPView.dll. On Workstation, this may allow a guest to execute code or perform a Denial of Service on the Windows OS tha...
Vmware Workstation 12.5.2
Vmware Workstation 12.5.1
Vmware Horizon View 4.2
Vmware Horizon View 4.3
Vmware Workstation 12.5
Vmware Workstation 12.1.1
Vmware Horizon View 4.0
Vmware Workstation 12.1
Vmware Workstation 12.0.1
Vmware Workstation 12.0
Vmware Horizon View 4.1
6.9
CVSSv2
CVE-2017-4911
VMware Workstation (12.x before 12.5.3) and Horizon View Client (4.x before 4.4.0) contain multiple out-of-bounds write vulnerabilities in JPEG2000 parser in the TPView.dll. On Workstation, this may allow a guest to execute code or perform a Denial of Service on the Windows OS th...
Vmware Workstation 12.5.1
Vmware Workstation 12.5
Vmware Horizon View 4.3
Vmware Horizon View 4.0
Vmware Workstation 12.1.1
Vmware Workstation 12.1
Vmware Workstation 12.0.1
Vmware Workstation 12.0
Vmware Workstation 12.5.2
Vmware Horizon View 4.1
Vmware Horizon View 4.2
6.9
CVSSv2
CVE-2017-4912
VMware Workstation (12.x before 12.5.3) and Horizon View Client (4.x before 4.4.0) contain multiple out-of-bounds read vulnerabilities in TrueType Font (TTF) parser in the TPView.dll. On Workstation, this may allow a guest to execute code or perform a Denial of Service on the Win...
Vmware Workstation 12.5
Vmware Workstation 12.1.1
Vmware Horizon View 4.0
Vmware Workstation 12.1
Vmware Workstation 12.0.1
Vmware Workstation 12.0
Vmware Horizon View 4.1
Vmware Workstation 12.5.2
Vmware Workstation 12.5.1
Vmware Horizon View 4.2
Vmware Horizon View 4.3
6.9
CVSSv2
CVE-2017-4913
VMware Workstation (12.x before 12.5.3) and Horizon View Client (4.x before 4.4.0) contain an integer-overflow vulnerability in the True Type Font parser in the TPView.dll. On Workstation, this may allow a guest to execute code or perform a Denial of Service on the Windows OS tha...
Vmware Workstation 12.0.1
Vmware Workstation 12.0
Vmware Horizon View 4.1
Vmware Workstation 12.5.2
Vmware Horizon View 4.2
Vmware Horizon View 4.3
Vmware Workstation 12.5.1
Vmware Workstation 12.5
Vmware Horizon View 4.0
Vmware Workstation 12.1.1
Vmware Workstation 12.1
5.5
CVSSv2
CVE-2013-4471
The Identity v3 API in OpenStack Dashboard (Horizon) prior to 2013.2 does not require the current password when changing passwords for user accounts, which makes it easier for remote malicious users to change a user password by leveraging the authentication token for that user.
Openstack Horizon
3.5
CVSSv2
CVE-2020-3997
VMware Horizon Server (7.x before 7.10.3 or 7.13.0) contains a Cross Site Scripting (XSS) vulnerability. Successful exploitation of this issue may allow an malicious user to inject malicious script which will be executed.
Vmware Horizon
5
CVSSv2
CVE-2019-5513
VMware Horizon Connection Server (7.x prior to 7.8, 7.5.x prior to 7.5.2, 6.x prior to 6.2.8) contains an information disclosure vulnerability. Successful exploitation of this issue may allow disclosure of internal domain names, the Connection Server’s internal name, or the...
Vmware Horizon
7.2
CVSSv2
CVE-2022-22962
VMware Horizon Agent for Linux (before 22.x) contains a local privilege escalation as a user is able to change the default shared folder location due to a vulnerable symbolic link. Successful exploitation can result in linking to a root owned file.
Vmware Horizon
7.2
CVSSv2
CVE-2022-22964
VMware Horizon Agent for Linux (before 22.x) contains a local privilege escalation that allows a user to escalate to root due to a vulnerable configuration file.
Vmware Horizon
NA
CVE-2022-45582
Open Redirect vulnerability in Horizon Web Dashboard 19.4.0 thru 20.1.4 via the success_url parameter.
Openstack Horizon
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »