Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware fusion vulnerabilities and exploits
(subscribe to this query)
7.7
CVSSv3
CVE-2020-3982
VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202008101-SG, 6.5 before ESXi650-202007101-SG), Workstation (15.x), Fusion (11.x prior to 11.5.6) contain an out-of-bounds write vulnerability due to a time-of-check time-of-use issue in ACPI device. A malicious ...
Vmware Esxi 7.0.0
Vmware Esxi 6.7
Vmware Esxi 6.5
Vmware Cloud Foundation
Vmware Workstation
Vmware Workstation Player
Vmware Fusion
1 Article
5.9
CVSSv3
CVE-2020-3993
VMware NSX-T (3.x prior to 3.0.2, 2.5.x prior to 2.5.2.2.0) contains a security vulnerability that exists in the way it allows a KVM host to download and install packages from NSX manager. A malicious actor with MITM positioning may be able to exploit this issue to compromise the...
Vmware Cloud Foundation
Vmware Nsx-t Data Center
1 Article
7.4
CVSSv3
CVE-2020-3994
VMware vCenter Server (6.7 prior to 6.7u3, 6.6 prior to 6.5u3k) contains a session hijack vulnerability in the vCenter Server Appliance Management Interface update function due to a lack of certificate validation. A malicious actor with network positioning between vCenter Server ...
Vmware Cloud Foundation
Vmware Vcenter Server 6.5
Vmware Vcenter Server 6.7
5.3
CVSSv3
CVE-2020-3995
In VMware ESXi (6.7 before ESXi670-201908101-SG, 6.5 before ESXi650-202007101-SG), Workstation (15.x prior to 15.1.0), Fusion (11.x prior to 11.1.0), the VMCI host drivers used by VMware hypervisors contain a memory leak vulnerability. A malicious actor with access to a virtual m...
Vmware Esxi 6.7
Vmware Esxi 6.5
Vmware Cloud Foundation
Vmware Workstation
Vmware Fusion
6.5
CVSSv3
CVE-2020-5421
In Spring Framework versions 5.2.0 - 5.2.8, 5.1.0 - 5.1.17, 5.0.0 - 5.0.18, 4.3.0 - 4.3.28, and older unsupported versions, the protections against RFD attacks from CVE-2015-5211 may be bypassed depending on the browser used through the use of a jsessionid path parameter.
Vmware Spring Framework
Oracle Flexcube Private Banking 12.1.0
Oracle Flexcube Private Banking 12.0.0
Oracle Weblogic Server 12.1.3.0.0
Oracle Insurance Rules Palette 10.2.0
Oracle Weblogic Server 10.3.6.0.0
Oracle Weblogic Server 12.2.1.3.0
Oracle Endeca Information Discovery Integrator 3.2.0
Oracle Retail Predictive Application Server 14.1
Oracle Retail Order Broker 15.0
Oracle Retail Order Broker 16.0
Oracle Retail Integration Bus 14.1.3
Oracle Retail Returns Management 14.1
Oracle Insurance Policy Administration 10.2
Oracle Enterprise Data Quality 12.2.1.3.0
Oracle Communications Unified Inventory Management 7.3.4
Oracle Communications Unified Inventory Management 7.3.5
Oracle Retail Invoice Matching 14.0
Oracle Retail Invoice Matching 14.1
Oracle Fusion Middleware 12.2.1.3.0
Oracle Weblogic Server 12.2.1.4.0
Oracle Fusion Middleware 12.2.1.4.0
2 Github repositories
6.7
CVSSv3
CVE-2020-3980
VMware Fusion (11.x) contains a privilege escalation vulnerability due to the way it allows configuring the system wide path. An attacker with normal user privileges may exploit this issue to trick an admin user into executing malicious code on the system where Fusion is installe...
Vmware Fusion
7.8
CVSSv3
CVE-2020-3974
VMware Fusion (11.x prior to 11.5.5), VMware Remote Console for Mac (11.x and prior prior to 11.2.0 ) and Horizon Client for Mac (5.x and prior prior to 5.4.3) contain a privilege escalation vulnerability due to improper XPC Client validation. Successful exploitation of this issu...
Vmware Fusion
Vmware Horizon Client
Vmware Remote Console
7.5
CVSSv3
CVE-2020-3967
VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x prior to 15.5.5), and Fusion (11.x prior to 11.5.5) contain a heap-overflow vulnerability in the USB 2.0 controller (EHCI). A malicious actor ...
Vmware Cloud Foundation
Vmware Fusion
Vmware Workstation
Vmware Esxi 6.5
Vmware Esxi 6.7
Vmware Esxi 7.0.0
5.5
CVSSv3
CVE-2020-3963
VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202006401-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x prior to 15.5.2), and Fusion (11.x prior to 11.5.2) contain a use-after-free vulnerability in PVNVRAM. A malicious actor with local access to ...
Vmware Esxi 6.5
Vmware Esxi 6.7
Vmware Workstation
Vmware Fusion
Vmware Esxi 7.0.0
Vmware Cloud Foundation
5.5
CVSSv3
CVE-2020-3965
VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202006401-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x prior to 15.5.2), and Fusion (11.x prior to 11.5.2) contain an information leak in the XHCI USB controller. A malicious actor with local acces...
Vmware Esxi 6.5
Vmware Esxi 6.7
Vmware Fusion
Vmware Workstation
Vmware Cloud Foundation
Vmware Esxi 7.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »