Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware vulnerabilities and exploits
(subscribe to this query)
8.3
CVSSv2
CVE-2012-1518
VMware Workstation 8.x prior to 8.0.2, VMware Player 4.x prior to 4.0.2, VMware Fusion 4.x prior to 4.1.2, VMware ESXi 3.5 up to and including 5.0, and VMware ESX 3.5 up to and including 4.1 use an incorrect ACL for the VMware Tools folder, which allows guest OS users to gain gue...
Vmware Workstation 8.0
Vmware Workstation 8.0.1
Vmware Player 4.0
Vmware Player 4.0.1
Vmware Player 4.0.2
Vmware Fusion 4.1.1
Vmware Fusion 4.0
Vmware Fusion 4.0.1
Vmware Fusion 4.0.2
Vmware Fusion 4.1
Vmware Esxi 4.1
Vmware Esxi 4.0
Vmware Esxi 5.0
Vmware Esxi 3.5
Vmware Esx 3.5
Vmware Esx 4.0
Vmware Esx 4.1
6.4
CVSSv2
CVE-2009-0908
Unspecified vulnerability in the ACE shared folders implementation in the VMware Host Guest File System (HGFS) shared folders feature in VMware ACE 2.5.1 and previous versions allows malicious users to enable a disabled shared folder.
Vmware Ace 2.0.2
Vmware Ace 2.0.1
Vmware Ace 1.0.2
Vmware Ace 1.0.1
Vmware Ace 2.0.4
Vmware Ace 2.0.3
Vmware Ace 1.0.4
Vmware Ace 2.0.5
Vmware Ace 2.0
Vmware Ace 1.0.7
Vmware Ace 1.0.0
Vmware Ace 1.0
Vmware Ace 1.0.3
Vmware Ace
Vmware Ace 2.5.0
Vmware Ace 1.0.6
Vmware Ace 1.0.5
6.6
CVSSv2
CVE-2017-4948
VMware Workstation (14.x prior to 14.1.0 and 12.x) and Horizon View Client (4.x prior to 4.7.0) contain an out-of-bounds read vulnerability in TPView.dll. On Workstation, this issue in conjunction with other bugs may allow a guest to leak information from host or may allow for a ...
Vmware Workstation 12.5.1
Vmware Workstation 12.5.2
Vmware Workstation 12.5.3
Vmware Workstation 12.1.1
Vmware Workstation 12.5
Vmware Workstation 12.5.4
Vmware Workstation 12.5.5
Vmware Workstation 12.5.6
Vmware Workstation 12.5.7
Vmware Workstation 12.5.8
Vmware Workstation 12.0.1
Vmware Workstation 12.0.0
Vmware Workstation 14.0
Vmware Workstation 12.5.9
Vmware Workstation 12.1
Vmware Workstation 12.5.0
Vmware Horizon View
5
CVSSv2
CVE-2009-3733
Directory traversal vulnerability in VMware Server 1.x prior to 1.0.10 build 203137 and 2.x prior to 2.0.2 build 203138 on Linux, VMware ESXi 3.5, and VMware ESX 3.0.3 and 3.5 allows remote malicious users to read arbitrary files via unspecified vectors.
Vmware Server 1.0.9
Vmware Server 1.0.1 Build 29996
Vmware Server 1.0.1
Vmware Esx 3.5
Vmware Server 1.0.2
Vmware Server 1.0.8
Vmware Server 1.0.4
Vmware Server 1.0.7
Vmware Esxi 3.5
Vmware Server 1.0.4 Build 56528
Vmware Server 1.0.3
Vmware Server 1.0.6
Vmware Server 1.0
Vmware Server 1.0.5
Vmware Esx 3.0.3
Vmware Server 2.0.0
Vmware Server 2.0.1
1 EDB exploit
2 Nmap scripts
1 Github repository
6.3
CVSSv2
CVE-2011-2145
mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x prior to 7.1.4, VMware Player 3.1.x prior to 3.1.4, VMware Fusion 3.1.x prior to 3.1.3, VMware ESXi 3.5 up to and including 4.1, and VMware ESX 3.0.3 up to and including 4.1, when a Solaris or Fr...
Vmware Workstation 7.1.3
Vmware Workstation 7.1.2
Vmware Esx 3.5
Vmware Esx 3.0.3
Vmware Player 3.1.2
Vmware Player 3.1
Vmware Esxi 4.0
Vmware Esxi 3.5
Vmware Workstation 7.1.1
Vmware Fusion 3.1
Vmware Fusion 3.1.2
Vmware Fusion 3.1.1
Vmware Esx 4.1
Vmware Player 3.1.1
Vmware Player 3.1.3
Vmware Esxi 4.1
Vmware Esx 4.0
2.1
CVSSv2
CVE-2011-2146
mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x prior to 7.1.4, VMware Player 3.1.x prior to 3.1.4, VMware Fusion 3.1.x prior to 3.1.3, VMware ESXi 3.5 up to and including 4.1, and VMware ESX 3.0.3 up to and including 4.1 allows guest OS users...
Vmware Workstation 7.1.2
Vmware Workstation 7.1.3
Vmware Workstation 7.1.1
Vmware Player 3.1
Vmware Player 3.1.3
Vmware Player 3.1.1
Vmware Player 3.1.2
Vmware Fusion 3.1
Vmware Fusion 3.1.1
Vmware Fusion 3.1.2
Vmware Esx 4.1
Vmware Esxi 3.5
Vmware Esxi 4.1
Vmware Esx 3.5
Vmware Esx 4.0
Vmware Esxi 4.0
Vmware Esx 3.0.3
6.4
CVSSv2
CVE-2014-8370
VMware Workstation 10.x prior to 10.0.5, VMware Player 6.x prior to 6.0.5, VMware Fusion 6.x prior to 6.0.5, and VMware ESXi 5.0 up to and including 5.5 allow host OS users to gain host OS privileges or cause a denial of service (arbitrary write to a file) by modifying a configur...
Vmware Player 6.0
Vmware Player 6.0.3
Vmware Player 6.0.4
Vmware Player 6.0.1
Vmware Player 6.0.2
Vmware Fusion 6.0.1
Vmware Fusion 6.0.2
Vmware Fusion 6.0
Vmware Fusion 6.0.3
Vmware Fusion 6.0.4
Vmware Workstation 10.0.4
Vmware Workstation 10.0.2
Vmware Workstation 10.0.3
Vmware Workstation 10.0
Vmware Workstation 10.0.1
Vmware Esxi 5.0
Vmware Esxi 5.1
Vmware Esxi 5.5
9
CVSSv2
CVE-2012-2450
VMware Workstation 8.x prior to 8.0.3, VMware Player 4.x prior to 4.0.3, VMware Fusion 4.x prior to 4.1.2, VMware ESXi 3.5 up to and including 5.0, and VMware ESX 3.5 up to and including 4.1 do not properly register SCSI devices, which allows guest OS users to cause a denial of s...
Vmware Workstation 8.0.1
Vmware Workstation 8.0
Vmware Workstation 8.0.2
Vmware Player 4.0.1
Vmware Player 4.0
Vmware Player 4.0.2
Vmware Fusion 4.1
Vmware Fusion 4.0
Vmware Fusion 4.1.1
Vmware Fusion 4.0.1
Vmware Fusion 4.0.2
Vmware Esxi 4.1
Vmware Esxi 4.0
Vmware Esxi 5.0
Vmware Esxi 3.5
Vmware Esx 4.0
Vmware Esx 4.1
Vmware Esx 3.5
7.5
CVSSv2
CVE-2017-4901
The drag-and-drop (DnD) function in VMware Workstation 12.x before version 12.5.4 and Fusion 8.x before version 8.5.5 has an out-of-bounds memory access vulnerability. This may allow a guest to execute code on the operating system that runs Workstation or Fusion.
Vmware Workstation 12.5.2
Vmware Workstation 12.5.3
Vmware Fusion 8.5.2
Vmware Fusion 8.5.1
Vmware Workstation 12.0.1
Vmware Workstation 12.0
Vmware Fusion 8.1.0
Vmware Fusion 8.0.2
Vmware Workstation 12.1
Vmware Workstation 12.1.1
Vmware Fusion 8.5.0
Vmware Fusion 8.1.1
Vmware Workstation 12.5
Vmware Workstation 12.5.1
Vmware Fusion 8.5.4
Vmware Fusion 8.5.3
Vmware Fusion 8.0.1
Vmware Fusion 8.0.0
1 EDB exploit
6 Github repositories
6.5
CVSSv2
CVE-2022-22958
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain two remote code execution vulnerabilities (CVE-2022-22957 & CVE-2022-22958). A malicious actor with administrative access can trigger deserialization of untrusted data through malicious JDBC URI whi...
Vmware Cloud Foundation
Vmware Identity Manager 3.3.3
Vmware Identity Manager 3.3.4
Vmware Identity Manager 3.3.5
Vmware Identity Manager 3.3.6
Vmware Vrealize Automation
Vmware Vrealize Automation 7.6
Vmware Vrealize Suite Lifecycle Manager
Vmware Workspace One Access 20.10.0.0
Vmware Workspace One Access 20.10.0.1
Vmware Workspace One Access 21.08.0.0
Vmware Workspace One Access 21.08.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »