Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware player vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2017-4902
VMware ESXi 6.5 without patch ESXi650-201703410-SG and 5.5 without patch ESXi550-201703401-SG; Workstation Pro / Player 12.x before 12.5.5; and Fusion Pro / Fusion 8.x before 8.5.6 have a Heap Buffer Overflow in SVGA. This issue may allow a guest to execute code on the host.
Vmware Workstation Player
Vmware Workstation Pro
Vmware Esxi 5.5
Vmware Esxi 6.5
Vmware Fusion
Vmware Fusion Pro
7.2
CVSSv2
CVE-2017-4915
VMware Workstation Pro/Player contains an insecure library loading vulnerability via ALSA sound driver configuration files. Successful exploitation of this issue may allow unprivileged host users to escalate their privileges to root in a Linux host machine.
Vmware Workstation Player 12.0.0
Vmware Workstation Pro 12.0.0
2 EDB exploits
7.2
CVSSv2
CVE-2016-7085
Untrusted search path vulnerability in the installer in VMware Workstation Pro 12.x prior to 12.5.0 and VMware Workstation Player 12.x prior to 12.5.0 on Windows allows local users to gain privileges via a Trojan horse DLL in an unspecified directory.
Vmware Workstation Player 12.1.0
Vmware Workstation Player 12.0.0
Vmware Workstation Pro 12.1.0
Vmware Workstation Pro 12.0.0
Vmware Workstation Player 12.0.1
Vmware Workstation Player 12.1.1
Vmware Workstation Pro 12.0.1
Vmware Workstation Pro 12.1.1
7.2
CVSSv2
CVE-2016-7086
The installer in VMware Workstation Pro 12.x prior to 12.5.0 and VMware Workstation Player 12.x prior to 12.5.0 on Windows allows local users to gain privileges via a Trojan horse setup64.exe file in the installation directory.
Vmware Workstation Pro 12.1.0
Vmware Workstation Pro 12.0.0
Vmware Workstation Player 12.1.0
Vmware Workstation Player 12.0.0
Vmware Workstation Pro 12.0.1
Vmware Workstation Pro 12.1.1
Vmware Workstation Player 12.0.1
Vmware Workstation Player 12.1.1
7.2
CVSSv2
CVE-2016-7461
The drag-and-drop (aka DnD) function in VMware Workstation Pro 12.x prior to 12.5.2 and VMware Workstation Player 12.x prior to 12.5.2 and VMware Fusion and Fusion Pro 8.x prior to 8.5.2 allows guest OS users to execute arbitrary code on the host OS or cause a denial of service (...
Vmware Fusion Pro 8.1.1
Vmware Fusion Pro 8.5.0
Vmware Fusion 8.5.0
Vmware Fusion 8.5.1
Vmware Workstation Pro 12.0.0
Vmware Workstation Player 12.0.1
Vmware Fusion Pro 8.0.2
Vmware Fusion Pro 8.1.0
Vmware Fusion 8.1.0
Vmware Fusion 8.1.1
Vmware Workstation Pro 12.0.1
Vmware Workstation Pro 12.1.1
Vmware Workstation Pro 12.1.0
Vmware Fusion Pro 8.5.1
Vmware Fusion 8.0.0
Vmware Workstation Player 12.5.0
Vmware Workstation Player 12.5.1
Vmware Workstation Player 12.1.1
Vmware Workstation Player 12.1.0
Vmware Fusion Pro 8.0.0
Vmware Fusion Pro 8.0.1
Vmware Fusion 8.0.1
7.2
CVSSv2
CVE-2015-3650
vmware-vmx.exe in VMware Workstation 7.x up to and including 10.x prior to 10.0.7 and 11.x prior to 11.1.1, VMware Player 5.x and 6.x prior to 6.0.7 and 7.x prior to 7.1.1, and VMware Horizon Client 5.x local-mode prior to 5.4.2 on Windows does not provide a valid DACL pointer du...
Vmware Player 5.0
Vmware Player 6.0.2
Vmware Player 6.0.3
Vmware Player 5.0.1
Vmware Player 5.0.2
Vmware Player 6.0.4
Vmware Player 6.0.5
Vmware Player 6.0
Vmware Player 6.0.1
Vmware Player 7.1
Vmware Player 5.0.3
Vmware Player 5.0.4
Vmware Player 6.0.6
Vmware Player 7.0
Vmware Workstation 10.0
Vmware Workstation 10.0.1
Vmware Workstation 10.0.2
Vmware Workstation 10.0.3
Vmware Workstation 10.0.4
Vmware Workstation 11.0
Vmware Workstation 11.1
Vmware Workstation 10.0.5
7.2
CVSSv2
CVE-2013-5972
VMware Workstation 9.x prior to 9.0.3 and VMware Player 5.x prior to 5.0.3 on Linux do not properly handle shared libraries, which allows host OS users to gain host OS privileges via unspecified vectors.
Vmware Workstation 9.0.1
Vmware Workstation 9.0
Vmware Workstation 9.0.2
Vmware Player 5.0
Vmware Player 5.0.1
Vmware Player 5.0.2
7.2
CVSSv2
CVE-2010-4297
The VMware Tools update functionality in VMware Workstation 6.5.x prior to 6.5.5 build 328052 and 7.x prior to 7.1.2 build 301548; VMware Player 2.5.x prior to 2.5.5 build 328052 and 3.1.x prior to 3.1.2 build 301548; VMware Server 2.0.2; VMware Fusion 2.x prior to 2.0.8 build 32...
Vmware Workstation 6.5.0
Vmware Workstation 7.1.2
Vmware Workstation 6.5.5
Vmware Workstation 7.1
Vmware Workstation 7.0.1
Vmware Workstation 6.5.3
Vmware Workstation 6.5.2
Vmware Workstation 6.5.1
Vmware Workstation 7.0
Vmware Workstation 7.1.1
Vmware Player 3.1
Vmware Player 2.5.5
Vmware Player 2.5.3
Vmware Player 2.5
Vmware Player 2.5.4
Vmware Player 3.1.1
Vmware Player 3.1.2
Vmware Player 2.5.1
Vmware Player 2.5.2
Vmware Fusion 2.0.6
Vmware Fusion 2.0
Vmware Fusion 2.0.1
1 EDB exploit
7.2
CVSSv2
CVE-2010-4296
vmware-mount in VMware Workstation 7.x prior to 7.1.2 build 301548 on Linux, VMware Player 3.1.x prior to 3.1.2 build 301548 on Linux, VMware Server 2.0.2 on Linux, and VMware Fusion 3.1.x prior to 3.1.2 build 332101 does not properly load libraries, which allows host OS users to...
Vmware Workstation 7.0
Vmware Workstation 7.0.1
Vmware Workstation 7.1
Vmware Workstation 7.1.1
Vmware Workstation 7.1.2
Vmware Player 3.1
Vmware Player 3.1.1
Vmware Player 3.1.2
Vmware Server 2.0.2
Vmware Fusion 3.1
Vmware Fusion 3.1.1
Vmware Fusion 3.1.2
7.2
CVSSv2
CVE-2010-1139
Format string vulnerability in vmrun in VMware VIX API 1.6.x, VMware Workstation 6.5.x prior to 6.5.4 build 246459, VMware Player 2.5.x prior to 2.5.4 build 246459, and VMware Server 2.x on Linux, and VMware Fusion 2.x prior to 2.0.7 build 246742, allows local users to gain privi...
Vmware Workstation 6.5.3
Vmware Workstation 6.5.0
Vmware Workstation 6.5.1
Vmware Workstation 6.5.2
Vmware Player 2.5.1
Vmware Player 2.5.2
Vmware Player 2.5
Vmware Player 2.5.3
Vmware Server 2.0.1
Vmware Server 2.0.2
Vmware Server 2.0.0
Vmware Fusion 2.0.4
Vmware Fusion 2.0.5
Vmware Fusion 2.0.6
Vmware Fusion 2.0.1
Vmware Fusion 2.0.2
Vmware Fusion 2.0.3
Vmware Fusion 2.0
Vmware Vix Api 1.6.0
Vmware Vix Api 1.6.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »