Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
esxi vulnerabilities and exploits
(subscribe to this query)
3.6
CVSSv2
CVE-2020-3960
VMware ESXi (6.7 before ESXi670-202006401-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x prior to 15.5.5), and Fusion (11.x prior to 11.5.5) contain an out-of-bounds read vulnerability in NVMe functionality. A malicious actor with local non-administrative access to a ...
Vmware Fusion
Vmware Workstation
Vmware Vsphere Esxi 6.5
Vmware Vsphere Esxi 6.7
7.8
CVSSv2
CVE-2011-1785
VMware ESXi 4.0 and 4.1 and ESX 4.0 and 4.1 allow remote malicious users to cause a denial of service (socket exhaustion) via unspecified network traffic.
Vmware Esxi 4.1
Vmware Esxi 4.0
Vmware Esx 4.0
Vmware Esx 4.1
5
CVSSv2
CVE-2020-3976
VMware ESXi and vCenter Server contain a partial denial of service vulnerability in their respective authentication services. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 5.3.
Vmware Cloud Foundation
Vmware Vcenter Server 6.5
Vmware Vcenter Server 6.7
Vmware Vcenter Server 7.0
Vmware Esxi 6.5
Vmware Esxi 6.7
Vmware Esxi 7.0
2.1
CVSSv2
CVE-2020-3971
VMware ESXi (6.7 before ESXi670-201904101-SG and 6.5 before ESXi650-201907101-SG), Workstation (15.x prior to 15.0.2), and Fusion (11.x prior to 11.0.2) contain a heap overflow vulnerability in the vmxnet3 virtual network adapter. A malicious actor with local access to a virtual ...
Vmware Cloud Foundation
Vmware Fusion
Vmware Workstation
Vmware Esxi 6.5
Vmware Esxi 6.7
3.5
CVSSv2
CVE-2020-3995
In VMware ESXi (6.7 before ESXi670-201908101-SG, 6.5 before ESXi650-202007101-SG), Workstation (15.x prior to 15.1.0), Fusion (11.x prior to 11.1.0), the VMCI host drivers used by VMware hypervisors contain a memory leak vulnerability. A malicious actor with access to a virtual m...
Vmware Esxi 6.7
Vmware Esxi 6.5
Vmware Cloud Foundation
Vmware Workstation
Vmware Fusion
7.9
CVSSv2
CVE-2010-4263
The igb_receive_skb function in drivers/net/igb/igb_main.c in the Intel Gigabit Ethernet (aka igb) subsystem in the Linux kernel prior to 2.6.34, when Single Root I/O Virtualization (SR-IOV) and promiscuous mode are enabled but no VLANs are registered, allows remote malicious use...
Linux Linux Kernel
Vmware Esx 3.5
Vmware Esxi 4.1
Vmware Esxi 4.0
Vmware Esxi 3.5
Vmware Esx 4.1
Vmware Esxi 5.0
Vmware Esx 4.0
Vmware Esx 3.0.0
Vmware Esx 3.0.2
Vmware Esx 3.0.1
Vmware Esx 3.0.3
6.5
CVSSv2
CVE-2015-6933
The VMware Tools HGFS (aka Shared Folders) implementation in VMware Workstation 11.x prior to 11.1.2, VMware Player 7.x prior to 7.1.2, VMware Fusion 7.x prior to 7.1.2, and VMware ESXi 5.0 up to and including 6.0 allows Windows guest OS users to gain guest OS privileges or cause...
Vmware Player 7.1.1
Vmware Player 7.0
Vmware Player 7.1
Vmware Workstation 11.0
Vmware Workstation 11.1
Vmware Workstation 11.1.1
Vmware Esxi 5.0
Vmware Esxi 5.1
Vmware Esxi 6.0
Vmware Esxi 5.5
Vmware Fusion 7.1.1
Vmware Fusion 7.1
Vmware Fusion 7.0
1 Article
5
CVSSv2
CVE-2010-3609
The extension parser in slp_v2message.c in OpenSLP 1.2.1, and other versions before SVN revision 1647, as used in Service Location Protocol daemon (SLPD) in VMware ESX 4.0 and 4.1 and ESXi 4.0 and 4.1, allows remote malicious users to cause a denial of service (infinite loop) via...
Vmware Esxi 4.0
Openslp Openslp 1.2.1
Vmware Esx 4.0
Vmware Esx 4.1
Vmware Esxi 4.1
1 EDB exploit
9.3
CVSSv2
CVE-2010-4573
The Update Installer in VMware ESXi 4.1, when a modified sfcb.cfg is present, does not properly configure the SFCB authentication mode, which allows remote malicious users to obtain access via an arbitrary username and password.
Vmware Esxi 4.1
7.2
CVSSv2
CVE-2017-4902
VMware ESXi 6.5 without patch ESXi650-201703410-SG and 5.5 without patch ESXi550-201703401-SG; Workstation Pro / Player 12.x before 12.5.5; and Fusion Pro / Fusion 8.x before 8.5.6 have a Heap Buffer Overflow in SVGA. This issue may allow a guest to execute code on the host.
Vmware Workstation Player
Vmware Workstation Pro
Vmware Esxi 5.5
Vmware Esxi 6.5
Vmware Fusion
Vmware Fusion Pro
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »