Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tools vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv2
CVE-2018-6969
VMware Tools (10.x and prior prior to 10.3.0) contains an out-of-bounds read vulnerability in HGFS. Successful exploitation of this issue may lead to information disclosure or may allow malicious users to escalate their privileges on the guest VMs. In order to be able to exploit ...
Vmware Tools
3.6
CVSSv2
CVE-2022-22977
VMware Tools for Windows(12.0.0, 11.x.y and 10.x.y) contains an XML External Entity (XXE) vulnerability. A malicious actor with non-administrative local user privileges in the Windows guest OS, where VMware Tools is installed, may exploit this issue leading to a denial-of-service...
Vmware Tools
NA
CVE-2022-31693
VMware Tools for Windows (12.x.y before 12.1.5, 11.x.y and 10.x.y) contains a denial-of-service vulnerability in the VM3DMP driver. A malicious actor with local user privileges in the Windows guest OS, where VMware Tools is installed, can trigger a PANIC in the VM3DMP driver lead...
Vmware Tools
4.9
CVSSv2
CVE-2021-21997
VMware Tools for Windows (11.x.y before 11.3.0) contains a denial-of-service vulnerability in the VM3DMP driver. A malicious actor with local user privileges in the Windows guest operating system, where VMware Tools is installed, can trigger a PANIC in the VM3DMP driver leading t...
Vmware Tools
3.6
CVSSv2
CVE-2019-5522
VMware Tools for Windows update addresses an out of bounds read vulnerability in vm3dmp driver which is installed with vmtools in Windows guest machines. This issue is present in versions 10.2.x and 10.3.x before 10.3.10. A local attacker with non-administrative access to a Windo...
Vmware Tools
4.4
CVSSv2
CVE-2020-3941
The repair operation of VMware Tools for Windows 10.x.y has a race condition which may allow for privilege escalation in the Virtual Machine where Tools is installed. This vulnerability is not present in VMware Tools 11.x.y since the affected functionality is not present in VMwar...
Vmware Tools
1 Article
4.3
CVSSv2
CVE-2021-3565
A flaw was found in tpm2-tools in versions prior to 5.1.1 and prior to 4.3.2. tpm2_import used a fixed AES key for the inner wrapper, potentially allowing a MITM malicious user to unwrap the inner portion and reveal the key being imported. The highest threat from this vulnerabili...
Tpm2-tools Project Tpm2-tools
Redhat Enterprise Linux 8.0
Fedoraproject Fedora 33
Fedoraproject Fedora 34
NA
CVE-2023-35774
Cross-Site Request Forgery (CSRF) vulnerability in LWS LWS Tools plugin <= 2.4.1 versions.
Lws Lws Tools
NA
CVE-2023-46092
Cross-Site Request Forgery (CSRF) vulnerability in LionScripts.Com Webmaster Tools allows Stored XSS.This issue affects Webmaster Tools: from n/a up to and including 2.0.
Lionscripts Webmaster Tools
NA
CVE-2023-46093
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in LionScripts.Com Webmaster Tools plugin <= 2.0 versions.
Lionscripts Webmaster Tools
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »