Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tools vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2021-31693
The 10Web Photo Gallery plugin up to and including 1.5.68 for WordPress allows XSS via album_gallery_id_0, bwg_album_search_0, and type_0 for bwg_frontend_data. NOTE: other parameters are covered by CVE-2021-24291, CVE-2021-25041, and CVE-2021-46889. NOTE: VMware information, pre...
Vmware Tools
3.9
CVSSv3
CVE-2023-20867
A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine.
Vmware Tools
3 Articles
6.7
CVSSv3
CVE-2015-5191
VMware Tools before 10.0.9 contains multiple file system races in libDeployPkg, related to the use of hard-coded paths under /tmp. Successful exploitation of this issue may result in a local privilege escalation. CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Vmware Tools
7.8
CVSSv3
CVE-2023-34057
VMware Tools contains a local privilege escalation vulnerability. A malicious actor with local user access to a guest virtual machine may elevate privileges within the virtual machine.
Vmware Tools
7.1
CVSSv3
CVE-2022-22977
VMware Tools for Windows(12.0.0, 11.x.y and 10.x.y) contains an XML External Entity (XXE) vulnerability. A malicious actor with non-administrative local user privileges in the Windows guest OS, where VMware Tools is installed, may exploit this issue leading to a denial-of-service...
Vmware Tools
5.5
CVSSv3
CVE-2022-31693
VMware Tools for Windows (12.x.y before 12.1.5, 11.x.y and 10.x.y) contains a denial-of-service vulnerability in the VM3DMP driver. A malicious actor with local user privileges in the Windows guest OS, where VMware Tools is installed, can trigger a PANIC in the VM3DMP driver lead...
Vmware Tools
3.3
CVSSv3
CVE-2020-3972
VMware Tools for macOS (11.x.x and prior prior to 11.1.1) contains a denial-of-service vulnerability in the Host-Guest File System (HGFS) implementation. Successful exploitation of this issue may allow attackers with non-admin privileges on guest macOS virtual machines to create ...
Vmware Tools
1 Article
7.1
CVSSv3
CVE-2019-5522
VMware Tools for Windows update addresses an out of bounds read vulnerability in vm3dmp driver which is installed with vmtools in Windows guest machines. This issue is present in versions 10.2.x and 10.3.x before 10.3.10. A local attacker with non-administrative access to a Windo...
Vmware Tools
5.9
CVSSv3
CVE-2021-3565
A flaw was found in tpm2-tools in versions prior to 5.1.1 and prior to 4.3.2. tpm2_import used a fixed AES key for the inner wrapper, potentially allowing a MITM malicious user to unwrap the inner portion and reveal the key being imported. The highest threat from this vulnerabili...
Tpm2-tools Project Tpm2-tools
Redhat Enterprise Linux 8.0
Fedoraproject Fedora 33
Fedoraproject Fedora 34
5.5
CVSSv3
CVE-2023-26589
Use after free in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allowed an authenticated user to potentially enable denial of service via local access.
Intel Aptio V Uefi Firmware Integrator Tools 5.27.03.0003
Intel Aptio V Uefi Firmware Integrator Tools 5.27.06.0017
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »