Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware vsphere vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv2
CVE-2015-4323
Buffer overflow in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 7.3(0)ZN(0.9); Nexus 3000 devices 6.0(2)U5(1.41), 7.0(3)I2(0.373), and 7.3(0)ZN(0.83); Nexus 4000 devices 4.1(2)E1(1b); Nexus 7000 devices 6.2(14)S1; Nexus 9000 devices 7.3(0)ZN(0.9); and MDS 9000 devices 6....
Cisco Nx-os 6.2(14)s1
Cisco Nx-os 6.0(2)u5(1.41)
Cisco Nx-os 7.0(3)i2(0.373)
Cisco Nx-os 7.3(0)zn(0.83)
Cisco Nx-os 7.3(0)zn(0.9)
Cisco Mds 9000 Nx-os 6.2(13)
Cisco Mds 9000 Nx-os 7.1(0)zn(91.99)
Cisco Nx-os 4.1(2)e1(1b)
6.1
CVSSv2
CVE-2015-4324
Buffer overflow in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 7.3(0)ZN(0.81), Nexus 3000 devices 7.3(0)ZN(0.81), Nexus 4000 devices 4.1(2)E1(1c), Nexus 7000 devices 7.2(0)N1(0.1), and Nexus 9000 devices 7.3(0)ZN(0.81) allows remote malicious users to cause a denial of ...
Cisco Nx-os 7.3(0)zn(0.81)
Cisco Nx-os 4.1(2)e1(1c)
Cisco Nx-os 7.2(0)n1(0.1)
6
CVSSv2
CVE-2021-39144
XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker has sufficient rights to execute commands of the host only by manipulating the processed input stream. No user is affected, who followed the...
Xstream Project Xstream
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Netapp Snapmanager -
Oracle Webcenter Portal 12.2.1.3.0
Oracle Utilities Framework 4.2.0.3.0
Oracle Utilities Framework 4.2.0.2.0
Oracle Utilities Framework 4.3.0.6.0
Oracle Utilities Framework 4.4.0.0.0
Oracle Communications Unified Inventory Management 7.3.4
Oracle Communications Unified Inventory Management 7.3.5
Oracle Communications Unified Inventory Management 7.4.0
Oracle Webcenter Portal 12.2.1.4.0
Oracle Utilities Framework 4.4.0.2.0
Oracle Communications Billing And Revenue Management Elastic Charging Engine 11.3
Oracle Communications Billing And Revenue Management Elastic Charging Engine 12.0
Oracle Business Activity Monitoring 12.2.1.4.0
Oracle Commerce Guided Search 11.3.2
1 Metasploit module
3 Github repositories
2 Articles
5.8
CVSSv2
CVE-2021-21974
OpenSLP as used in ESXi (7.0 before ESXi70U1c-17325551, 6.7 before ESXi670-202102401-SG, 6.5 before ESXi650-202102101-SG) has a heap-overflow vulnerability. A malicious actor residing within the same network segment as ESXi who has access to port 427 may be able to trigger the he...
Vmware Cloud Foundation
Vmware Esxi 6.5
Vmware Esxi 6.7
Vmware Esxi 7.0.0
5 Github repositories
4 Articles
5.8
CVSSv2
CVE-2019-5531
VMware vSphere ESXi (6.7 prior to ESXi670-201810101-SG, 6.5 prior to ESXi650-201811102-SG, and 6.0 prior to ESXi600-201807103-SG) and VMware vCenter Server (6.7 before 6.7 U1b, 6.5 before 6.5 U2b, and 6.0 before 6.0 U3j) contain an information disclosure vulnerability in clients ...
Vmware Esxi 6.7
Vmware Vsphere Esxi 6.7
Vmware Vsphere Esxi 6.5
Vmware Vsphere Esxi 6.0
Vmware Vcenter Server 6.0
Vmware Vcenter Server 6.7
Vmware Vcenter Server 6.5
5.8
CVSSv2
CVE-2018-11067
Dell EMC Avamar Client Manager in Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0, 7.4.1, 7.5.0, 7.5.1, 18.1 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0, 2.1 and 2.2 contain an open redirection vulnerability. A remote unauthenticated at...
Dell Emc Integrated Data Protection Appliance 2.0
Dell Emc Integrated Data Protection Appliance 2.1
Dell Emc Avamar 7.3.1
Dell Emc Avamar 7.4.1
Dell Emc Avamar 7.5.0
Dell Emc Integrated Data Protection Appliance 2.2
Dell Emc Avamar 18.1
Dell Emc Avamar 7.5.1
Dell Emc Avamar 7.4.0
Dell Emc Avamar 7.3.0
Dell Emc Avamar 7.2.0
Dell Emc Avamar 7.2.1
Vmware Vsphere Data Protection 6.1.0
Vmware Vsphere Data Protection 6.0.3
Vmware Vsphere Data Protection 6.0.1
Vmware Vsphere Data Protection 6.1.3
Vmware Vsphere Data Protection 6.1.1
Vmware Vsphere Data Protection 6.0.0
Vmware Vsphere Data Protection 6.0.4
Vmware Vsphere Data Protection 6.1.2
Vmware Vsphere Data Protection 6.0.2
Vmware Vsphere Data Protection 6.0.5
5.8
CVSSv2
CVE-2014-1210
VMware vSphere Client 5.0 before Update 3 and 5.1 before Update 2 does not properly validate X.509 certificates, which allows man-in-the-middle malicious users to spoof SSL servers via a crafted certificate.
Vmware Vsphere Client 5.0
Vmware Vsphere Client 5.1
5
CVSSv2
CVE-2021-21980
The vSphere Web Client (FLEX/Flash) contains an unauthorized arbitrary file read vulnerability. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to gain access to sensitive information.
Vmware Vcenter Server 6.5
Vmware Vcenter Server 6.7
Vmware Cloud Foundation 3.0
3 Github repositories
5
CVSSv2
CVE-2021-21973
The vSphere Client (HTML5) contains an SSRF (Server Side Request Forgery) vulnerability due to improper validation of URLs in a vCenter Server plugin. A malicious actor with network access to port 443 may exploit this issue by sending a POST request to vCenter Server plugin leadi...
Vmware Vcenter Server 6.5
Vmware Vcenter Server 6.7
Vmware Vcenter Server 7.0
Vmware Cloud Foundation
10 Github repositories
1 Article
5
CVSSv2
CVE-2020-10136
IP-in-IP protocol specifies IP Encapsulation within IP standard (RFC 2003, STD 1) that decapsulate and route IP-in-IP traffic is vulnerable to spoofing, access-control bypass and other unexpected behavior due to the lack of validation to verify network packets before decapsulatio...
Cisco Nx-os 5.2(1)sk3(1.1)
Cisco Nx-os 5.2(1)sk3(2.1)
Cisco Nx-os 5.2(1)sk3(2.1a)
Cisco Nx-os 5.2(1)sk3(2.2)
Cisco Nx-os 5.2(1)sk3(2.2b)
Cisco Nx-os 5.2(1)sm1(5.1)
Cisco Nx-os 5.2(1)sm1(5.2)
Cisco Nx-os 5.2(1)sm1(5.2a)
Cisco Nx-os 5.2(1)sm1(5.2b)
Cisco Nx-os 5.2(1)sm1(5.2c)
Cisco Nx-os 5.2(1)sm3(1.1)
Cisco Nx-os 5.2(1)sm3(1.1a)
Cisco Nx-os 5.2(1)sm3(1.1b)
Cisco Nx-os 5.2(1)sm3(1.1c)
Cisco Nx-os 5.2(1)sm3(2.1)
Cisco Nx-os 5.2(1)sv3(1.1)
Cisco Nx-os 5.2(1)sv3(1.2)
Cisco Nx-os 5.2(1)sv3(1.3)
Cisco Nx-os 5.2(1)sv3(1.4)
Cisco Nx-os 5.2(1)sv3(1.4b)
Cisco Nx-os 5.2(1)sv3(1.5a)
Cisco Nx-os 5.2(1)sv3(1.5b)
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »