Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware workstation vulnerabilities and exploits
(subscribe to this query)
6.7
CVSSv3
CVE-2021-22040
VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the XHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host...
Vmware Cloud Foundation
Vmware Fusion
Vmware Workstation Player
Vmware Workstation Pro
Vmware Esxi 6.5
Vmware Esxi 6.7
Vmware Esxi 7.0
6.5
CVSSv3
CVE-2022-22938
VMware Workstation (16.x before 16.2.2) and Horizon Client for Windows (5.x before 5.5.3) contains a denial-of-service vulnerability in the Cortado ThinPrint component. The issue exists in TrueType font parser. A malicious actor with access to a virtual machine or remote desktop ...
Vmware Workstation
Vmware Horizon
7.8
CVSSv3
CVE-2021-22045
VMware ESXi (7.0, 6.7 before ESXi670-202111101-SG and 6.5 before ESXi650-202110101-SG), VMware Workstation (16.2.0) and VMware Fusion (12.2.0) contains a heap-overflow vulnerability in CD-ROM device emulation. A malicious actor with access to a virtual machine with CD-ROM device ...
Vmware Cloud Foundation
Vmware Workstation
Vmware Fusion
Vmware Esxi 6.5
Vmware Esxi 6.7
Vmware Esxi 7.0
8.4
CVSSv3
CVE-2020-3960
VMware ESXi (6.7 before ESXi670-202006401-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x prior to 15.5.5), and Fusion (11.x prior to 11.5.5) contain an out-of-bounds read vulnerability in NVMe functionality. A malicious actor with local non-administrative access to a ...
Vmware Fusion
Vmware Workstation
Vmware Vsphere Esxi 6.5
Vmware Vsphere Esxi 6.7
7.8
CVSSv3
CVE-2021-21999
VMware Tools for Windows (11.x.y before 11.2.6), VMware Remote Console for Windows (12.x before 12.0.1) , VMware App Volumes (2.x before 2.18.10 and 4 before 2103) contain a local privilege escalation vulnerability. An attacker with normal access to a virtual machine may exploit ...
Vmware Remote Console
Vmware App Volumes
Vmware Tools
6.5
CVSSv3
CVE-2021-21987
VMware Workstation (16.x before 16.1.2) and Horizon Client for Windows (5.x before 5.5.2) contain out-of-bounds read vulnerability in the Cortado ThinPrint component (TTC Parser). A malicious actor with access to a virtual machine or remote desktop may be able to exploit these is...
Vmware Workstation
Vmware Horizon Client
6.5
CVSSv3
CVE-2021-21988
VMware Workstation (16.x before 16.1.2) and Horizon Client for Windows (5.x before 5.5.2) contain out-of-bounds read vulnerability in the Cortado ThinPrint component (JPEG2000 Parser). A malicious actor with access to a virtual machine or remote desktop may be able to exploit the...
Vmware Workstation
Vmware Horizon Client
6.5
CVSSv3
CVE-2021-21989
VMware Workstation (16.x before 16.1.2) and Horizon Client for Windows (5.x before 5.5.2) contain out-of-bounds read vulnerability in the Cortado ThinPrint component (TTC Parser). A malicious actor with access to a virtual machine or remote desktop may be able to exploit these is...
Vmware Workstation
Vmware Horizon Client
6.5
CVSSv3
CVE-2020-3999
VMware ESXi (7.0 prior to ESXi70U1c-17325551), VMware Workstation (16.x before 16.0 and 15.x before 15.5.7), VMware Fusion (12.x before 12.0 and 11.x before 11.5.7) and VMware Cloud Foundation contain a denial of service vulnerability due to improper input validation in GuestInfo...
Vmware Workstation
Vmware Esxi
Vmware Fusion
8.2
CVSSv3
CVE-2020-4004
VMware ESXi (7.0 before ESXi70U1b-17168206, 6.7 before ESXi670-202011101-SG, 6.5 before ESXi650-202011301-SG), Workstation (15.x prior to 15.5.7), Fusion (11.x prior to 11.5.7) contain a use-after-free vulnerability in the XHCI USB controller. A malicious actor with local adminis...
Vmware Fusion
Vmware Cloud Foundation
Vmware Workstation
Vmware Esxi 6.5
Vmware Esxi 6.7
Vmware Esxi 7.0
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »