Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tools vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2000-0741
Format string vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote malicious users to execute arbitrary code via format strings in a URL with a .XUDA extension.
Network Associates Net Tools Pki Server 1.0hotfix1
Network Associates Net Tools Pki Server 1.0
Network Associates Net Tools Pki Server 1.0hotfix2
1 EDB exploit
4.3
CVSSv2
CVE-2006-7078
Multiple cross-site scripting (XSS) vulnerabilities in Professional Home Page Tools Login Script, as of July 2006, allow remote malicious users to inject arbitrary web script or HTML via the (1) name, (2) vorname, and (3) nachname parameters in the register script. NOTE: some det...
Professional Home Page Tools Login Script Professional Home Page Tools Login Script
10
CVSSv2
CVE-2002-0437
Smsd in SMS Server Tools (SMStools) prior to 1.4.8 allows remote malicious users to execute arbitrary commands via shell metacharacters (backquotes) in message text, as described with the term "string format vulnerability" by some sources.
Stefan Frings Sms Server Tools 1.4.6
Stefan Frings Sms Server Tools 1.4.7
7.5
CVSSv2
CVE-2007-2070
Multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools SunShop Shopping Cart prior to 3.5.1 allow remote malicious users to execute arbitrary PHP code via a URL in the abs_path parameter to (1) index.php or (2) checkout.php.
Turnkey Web Tools Sunshop Shopping Cart 3.5
Turnkey Web Tools Sunshop Shopping Cart
1 EDB exploit
4.4
CVSSv2
CVE-2020-3941
The repair operation of VMware Tools for Windows 10.x.y has a race condition which may allow for privilege escalation in the Virtual Machine where Tools is installed. This vulnerability is not present in VMware Tools 11.x.y since the affected functionality is not present in VMwar...
Vmware Tools
1 Article
2.1
CVSSv2
CVE-2020-3972
VMware Tools for macOS (11.x.x and prior prior to 11.1.1) contains a denial-of-service vulnerability in the Host-Guest File System (HGFS) implementation. Successful exploitation of this issue may allow attackers with non-admin privileges on guest macOS virtual machines to create ...
Vmware Tools
1 Article
NA
CVE-2023-20867
A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine.
Vmware Tools
3 Articles
3.6
CVSSv2
CVE-2019-5522
VMware Tools for Windows update addresses an out of bounds read vulnerability in vm3dmp driver which is installed with vmtools in Windows guest machines. This issue is present in versions 10.2.x and 10.3.x before 10.3.10. A local attacker with non-administrative access to a Windo...
Vmware Tools
NA
CVE-2022-31693
VMware Tools for Windows (12.x.y before 12.1.5, 11.x.y and 10.x.y) contains a denial-of-service vulnerability in the VM3DMP driver. A malicious actor with local user privileges in the Windows guest OS, where VMware Tools is installed, can trigger a PANIC in the VM3DMP driver lead...
Vmware Tools
3.7
CVSSv2
CVE-2015-5191
VMware Tools before 10.0.9 contains multiple file system races in libDeployPkg, related to the use of hard-coded paths under /tmp. Successful exploitation of this issue may result in a local privilege escalation. CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Vmware Tools
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000
CVE-2024-4439
unauthorized
CVE-2024-0042
CVE-2024-31848
CVE-2023-40694
cache poisoning
CVE-2024-23707
firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »