Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware horizon vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2020-3998
VMware Horizon Client for Windows (5.x before 5.5.0) contains an information disclosure vulnerability. A malicious attacker with local privileges on the machine where Horizon Client for Windows is installed may be able to retrieve hashed credentials if the client crashes.
Vmware Horizon Client
6.5
CVSSv3
CVE-2020-3977
VMware Horizon DaaS (7.x and 8.x prior to 8.0.1 Update 1) contains a broken authentication vulnerability due to a flaw in the way it handled the first factor authentication. Successful exploitation of this issue may allow an malicious user to bypass two-factor authentication proc...
Vmware Horizon Daas 7.0.0
Vmware Horizon Daas
6.5
CVSSv3
CVE-2020-3990
VMware Workstation (15.x) and Horizon Client for Windows (5.x prior to 5.4.4) contain an information disclosure vulnerability due to an integer overflow issue in Cortado ThinPrint component. A malicious actor with normal access to a virtual machine may be able to exploit this iss...
Vmware Horizon Client
Vmware Workstation Player
Vmware Workstation Pro
6.5
CVSSv3
CVE-2018-6970
VMware Horizon 6 (6.x.x prior to 6.2.7), Horizon 7 (7.x.x prior to 7.5.1), and Horizon Client (4.x.x and prior prior to 4.8.1) contain an out-of-bounds read vulnerability in the Message Framework library. Successfully exploiting this issue may allow a less-privileged user to leak...
Vmware Horizon View
Vmware Horizon Client
6.1
CVSSv3
CVE-2020-3988
VMware Workstation (15.x) and Horizon Client for Windows (5.x prior to 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (JPEG2000 parser). A malicious actor with normal access to a virtual machine may be able to exploit these issues to create a pa...
Vmware Horizon Client
Vmware Workstation Player
Vmware Workstation Pro
6.1
CVSSv3
CVE-2020-3986
VMware Workstation (15.x) and Horizon Client for Windows (5.x prior to 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (EMF Parser). A malicious actor with normal access to a virtual machine may be able to exploit these issues to create a partial...
Vmware Horizon Client
Vmware Workstation Player
Vmware Workstation Pro
6.1
CVSSv3
CVE-2020-3987
VMware Workstation (15.x) and Horizon Client for Windows (5.x prior to 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (EMR STRETCHDIBITS parser). A malicious actor with normal access to a virtual machine may be able to exploit these issues to cr...
Vmware Horizon Client
Vmware Workstation Player
Vmware Workstation Pro
5.5
CVSSv3
CVE-2017-4897
VMware Horizon DaaS prior to 7.0.0 contains a vulnerability that exists due to insufficient validation of data. An attacker may exploit this issue by tricking DaaS client users into connecting to a malicious server and sharing all their drives and devices. Successful exploitation...
Vmware Horizon Daas
5.4
CVSSv3
CVE-2020-3997
VMware Horizon Server (7.x before 7.10.3 or 7.13.0) contains a Cross Site Scripting (XSS) vulnerability. Successful exploitation of this issue may allow an malicious user to inject malicious script which will be executed.
Vmware Horizon
5.3
CVSSv3
CVE-2023-34037
VMware Horizon Server contains a HTTP request smuggling vulnerability. A malicious actor with network access may be able to perform HTTP smuggle requests.
Vmware Horizon Client 2212
Vmware Horizon Client 2006
Vmware Horizon Client 2012
Vmware Horizon Client 2103
Vmware Horizon Client 2106
Vmware Horizon Client 2111
Vmware Horizon Client 2111.1
Vmware Horizon Client 2203
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »