Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-1518
VMware Workstation 8.x prior to 8.0.2, VMware Player 4.x prior to 4.0.2, VMware Fusion 4.x prior to 4.1.2, VMware ESXi 3.5 up to and including 5.0, and VMware ESX 3.5 up to and including 4.1 use an incorrect ACL for the VMware Tools folder, which allows guest OS users to gain gue...
Vmware Workstation 8.0
Vmware Workstation 8.0.1
Vmware Player 4.0
Vmware Player 4.0.1
Vmware Player 4.0.2
Vmware Fusion 4.1.1
Vmware Fusion 4.0
Vmware Fusion 4.0.1
Vmware Fusion 4.0.2
Vmware Fusion 4.1
Vmware Esxi 4.1
Vmware Esxi 4.0
Vmware Esxi 5.0
Vmware Esxi 3.5
Vmware Esx 3.5
Vmware Esx 4.0
Vmware Esx 4.1
NA
CVE-2011-2145
mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x prior to 7.1.4, VMware Player 3.1.x prior to 3.1.4, VMware Fusion 3.1.x prior to 3.1.3, VMware ESXi 3.5 up to and including 4.1, and VMware ESX 3.0.3 up to and including 4.1, when a Solaris or Fr...
Vmware Workstation 7.1.3
Vmware Workstation 7.1.2
Vmware Esx 3.5
Vmware Esx 3.0.3
Vmware Player 3.1.2
Vmware Player 3.1
Vmware Esxi 4.0
Vmware Esxi 3.5
Vmware Workstation 7.1.1
Vmware Fusion 3.1
Vmware Fusion 3.1.2
Vmware Fusion 3.1.1
Vmware Esx 4.1
Vmware Player 3.1.1
Vmware Player 3.1.3
Vmware Esxi 4.1
Vmware Esx 4.0
NA
CVE-2011-1787
Race condition in mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x prior to 7.1.4, VMware Player 3.1.x prior to 3.1.4, VMware Fusion 3.1.x prior to 3.1.3, VMware ESXi 3.5 up to and including 4.1, and VMware ESX 3.0.3 up to and including 4.1 all...
Vmware Workstation 7.1.3
Vmware Workstation 7.1.1
Vmware Workstation 7.1.2
Vmware Player 3.1.2
Vmware Player 3.1.3
Vmware Player 3.1.1
Vmware Player 3.1
Vmware Fusion 3.1.1
Vmware Fusion 3.1.2
Vmware Fusion 3.1
Vmware Esxi 4.0
Vmware Esx 3.0.3
Vmware Esxi 3.5
Vmware Esxi 4.1
Vmware Esx 4.1
Vmware Esx 3.5
Vmware Esx 4.0
7.1
CVSSv3
CVE-2017-4948
VMware Workstation (14.x prior to 14.1.0 and 12.x) and Horizon View Client (4.x prior to 4.7.0) contain an out-of-bounds read vulnerability in TPView.dll. On Workstation, this issue in conjunction with other bugs may allow a guest to leak information from host or may allow for a ...
Vmware Workstation 12.5.1
Vmware Workstation 12.5.2
Vmware Workstation 12.5.3
Vmware Workstation 12.1.1
Vmware Workstation 12.5
Vmware Workstation 12.5.4
Vmware Workstation 12.5.5
Vmware Workstation 12.5.6
Vmware Workstation 12.5.7
Vmware Workstation 12.5.8
Vmware Workstation 12.0.1
Vmware Workstation 12.0.0
Vmware Workstation 14.0
Vmware Workstation 12.5.9
Vmware Workstation 12.1
Vmware Workstation 12.5.0
Vmware Horizon View
NA
CVE-2009-0908
Unspecified vulnerability in the ACE shared folders implementation in the VMware Host Guest File System (HGFS) shared folders feature in VMware ACE 2.5.1 and previous versions allows malicious users to enable a disabled shared folder.
Vmware Ace 2.0.2
Vmware Ace 2.0.1
Vmware Ace 1.0.2
Vmware Ace 1.0.1
Vmware Ace 2.0.4
Vmware Ace 2.0.3
Vmware Ace 1.0.4
Vmware Ace 2.0.5
Vmware Ace 2.0
Vmware Ace 1.0.7
Vmware Ace 1.0.0
Vmware Ace 1.0
Vmware Ace 1.0.3
Vmware Ace
Vmware Ace 2.5.0
Vmware Ace 1.0.6
Vmware Ace 1.0.5
NA
CVE-2011-2146
mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x prior to 7.1.4, VMware Player 3.1.x prior to 3.1.4, VMware Fusion 3.1.x prior to 3.1.3, VMware ESXi 3.5 up to and including 4.1, and VMware ESX 3.0.3 up to and including 4.1 allows guest OS users...
Vmware Workstation 7.1.2
Vmware Workstation 7.1.3
Vmware Workstation 7.1.1
Vmware Player 3.1
Vmware Player 3.1.3
Vmware Player 3.1.1
Vmware Player 3.1.2
Vmware Fusion 3.1
Vmware Fusion 3.1.1
Vmware Fusion 3.1.2
Vmware Esx 4.1
Vmware Esxi 3.5
Vmware Esxi 4.1
Vmware Esx 3.5
Vmware Esx 4.0
Vmware Esxi 4.0
Vmware Esx 3.0.3
NA
CVE-2012-2450
VMware Workstation 8.x prior to 8.0.3, VMware Player 4.x prior to 4.0.3, VMware Fusion 4.x prior to 4.1.2, VMware ESXi 3.5 up to and including 5.0, and VMware ESX 3.5 up to and including 4.1 do not properly register SCSI devices, which allows guest OS users to cause a denial of s...
Vmware Workstation 8.0.1
Vmware Workstation 8.0
Vmware Workstation 8.0.2
Vmware Player 4.0.1
Vmware Player 4.0
Vmware Player 4.0.2
Vmware Fusion 4.1
Vmware Fusion 4.0
Vmware Fusion 4.1.1
Vmware Fusion 4.0.1
Vmware Fusion 4.0.2
Vmware Esxi 4.1
Vmware Esxi 4.0
Vmware Esxi 5.0
Vmware Esxi 3.5
Vmware Esx 4.0
Vmware Esx 4.1
Vmware Esx 3.5
9.9
CVSSv3
CVE-2017-4901
The drag-and-drop (DnD) function in VMware Workstation 12.x before version 12.5.4 and Fusion 8.x before version 8.5.5 has an out-of-bounds memory access vulnerability. This may allow a guest to execute code on the operating system that runs Workstation or Fusion.
Vmware Workstation 12.5.2
Vmware Workstation 12.5.3
Vmware Fusion 8.5.2
Vmware Fusion 8.5.1
Vmware Workstation 12.0.1
Vmware Workstation 12.0
Vmware Fusion 8.1.0
Vmware Fusion 8.0.2
Vmware Workstation 12.1
Vmware Workstation 12.1.1
Vmware Fusion 8.5.0
Vmware Fusion 8.1.1
Vmware Workstation 12.5
Vmware Workstation 12.5.1
Vmware Fusion 8.5.4
Vmware Fusion 8.5.3
Vmware Fusion 8.0.1
Vmware Fusion 8.0.0
1 EDB exploit
6 Github repositories
NA
CVE-2014-8370
VMware Workstation 10.x prior to 10.0.5, VMware Player 6.x prior to 6.0.5, VMware Fusion 6.x prior to 6.0.5, and VMware ESXi 5.0 up to and including 5.5 allow host OS users to gain host OS privileges or cause a denial of service (arbitrary write to a file) by modifying a configur...
Vmware Player 6.0
Vmware Player 6.0.3
Vmware Player 6.0.4
Vmware Player 6.0.1
Vmware Player 6.0.2
Vmware Fusion 6.0.1
Vmware Fusion 6.0.2
Vmware Fusion 6.0
Vmware Fusion 6.0.3
Vmware Fusion 6.0.4
Vmware Workstation 10.0.4
Vmware Workstation 10.0.2
Vmware Workstation 10.0.3
Vmware Workstation 10.0
Vmware Workstation 10.0.1
Vmware Esxi 5.0
Vmware Esxi 5.1
Vmware Esxi 5.5
4.3
CVSSv3
CVE-2022-22959
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a cross site request forgery vulnerability. A malicious actor can trick a user through a cross site request forgery to unintentionally validate a malicious JDBC URI.
Vmware Cloud Foundation
Vmware Identity Manager 3.3.3
Vmware Identity Manager 3.3.4
Vmware Identity Manager 3.3.5
Vmware Identity Manager 3.3.6
Vmware Vrealize Automation 7.6
Vmware Vrealize Automation
Vmware Vrealize Suite Lifecycle Manager
Vmware Workspace One Access 20.10.0.0
Vmware Workspace One Access 20.10.0.1
Vmware Workspace One Access 21.08.0.0
Vmware Workspace One Access 21.08.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »