Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
esx vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-3618
Cross-site request forgery (CSRF) vulnerability in the management interface for VMware ESX Server 2.0.x prior to 2.0.2 patch 1, 2.1.x prior to 2.1.3 patch 1, and 2.x prior to 2.5.3 patch 2 allows allows remote malicious users to perform unauthorized actions as the administrator v...
Vmware Esx
NA
CVE-2005-3620
The management interface for VMware ESX Server 2.0.x prior to 2.0.2 patch 1, 2.1.x prior to 2.1.3 patch 1, and 2.x prior to 2.5.3 patch 2 records passwords in cleartext in URLs that are stored in world-readable web server log files, which allows local users to gain privileges.
Vmware Esx
NA
CVE-2009-2277
Cross-site scripting (XSS) vulnerability in WebAccess in VMware VirtualCenter 2.0.2 and 2.5 and VMware ESX 3.0.3 and 3.5 allows remote malicious users to inject arbitrary web script or HTML via vectors related to "context data."
Vmware Virtualcenter 2.5
Vmware Esx Server 3.0.3
Vmware Esx Server 3.5
Vmware Virtualcenter 2.0.2
NA
CVE-2010-3609
The extension parser in slp_v2message.c in OpenSLP 1.2.1, and other versions before SVN revision 1647, as used in Service Location Protocol daemon (SLPD) in VMware ESX 4.0 and 4.1 and ESXi 4.0 and 4.1, allows remote malicious users to cause a denial of service (infinite loop) via...
Vmware Esxi 4.0
Openslp Openslp 1.2.1
Vmware Esx 4.0
Vmware Esx 4.1
Vmware Esxi 4.1
1 EDB exploit
NA
CVE-2013-5970
hostd-vmdb in VMware ESXi 4.0 up to and including 5.0 and ESX 4.0 up to and including 4.1 allows remote malicious users to cause a denial of service (hostd-vmdb service outage) by modifying management traffic.
Vmware Esx 4.0
Vmware Esx 4.1
Vmware Esxi 4.0
Vmware Esxi 4.1
Vmware Esxi 5.0
NA
CVE-2013-3657
Buffer overflow in VMware ESXi 4.0 up to and including 5.0, and ESX 4.0 and 4.1, allows remote malicious users to execute arbitrary code or cause a denial of service via unspecified vectors.
Vmware Esxi 4.0
Vmware Esxi 5.0
Vmware Esx 4.0
Vmware Esx 4.1
Vmware Esxi 4.1
NA
CVE-2013-3658
Directory traversal vulnerability in VMware ESXi 4.0 up to and including 5.0, and ESX 4.0 and 4.1, allows remote malicious users to delete arbitrary host OS files via unspecified vectors.
Vmware Esxi 4.0
Vmware Esx 4.0
Vmware Esxi 4.1
Vmware Esx 4.1
Vmware Esxi 5.0
NA
CVE-2003-1291
VMware ESX Server 1.5.2 before Patch 4 allows local users to execute arbitrary programs as root via certain modified VMware ESX Server environment variables.
Vmware Esx 1.5.2
NA
CVE-2011-0355
Cisco Nexus 1000V Virtual Ethernet Module (VEM) 4.0(4) SV1(1) through SV1(3b), as used in VMware ESX 4.0 and 4.1 and ESXi 4.0 and 4.1, does not properly handle dropped packets, which allows guest OS users to cause a denial of service (ESX or ESXi host OS crash) by sending an 802....
Cisco 1000v Virtual Ethernet Module \\(vem\\) 4.0\\(4\\)
Vmware Esxi 4.0
Vmware Esxi 4.1
Vmware Esx 4.0
Vmware Esx 4.1
NA
CVE-2012-1508
The XPDM display driver in VMware ESXi 4.0, 4.1, and 5.0; VMware ESX 4.0 and 4.1; and VMware View prior to 4.6.1 allows guest OS users to gain guest OS privileges or cause a denial of service (NULL pointer dereference) via unspecified vectors.
Vmware Esxi 4.0
Vmware Esx 4.1
Vmware View
Vmware Esxi 4.1
Vmware Esxi 5.0
Vmware Esx 4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-35229
privilege escalation
local users
CVE-2024-5405
CVE-2024-27842
CVE-2024-5274
CVE-2024-5378
CVE-2024-34152
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »