Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3589
vmware-config.pl in VMware for Linux, ESX Server 2.x, and Infrastructure 3 does not check the return code from a Perl chmod function call, which might cause an SSL key file to be created with an unsafe umask that allows local users to read or modify the SSL key.
Vmware Server 1.0.1 Build 29996
Vmware Workstation 5.5.3
Vmware Infrastructure 3
Vmware Player
Vmware Esx 2.0
Vmware Esx 2.0.1
Vmware Esx 2.1.2
Vmware Esx 2.5
Vmware Esx 2.5.2
Vmware Esx 2.1.1
Vmware Esx 2.1
NA
CVE-2009-2628
The VMnc media codec in vmnc.dll in VMware Movie Decoder prior to 6.5.3 build 185404, VMware Workstation 6.5.x prior to 6.5.3 build 185404, VMware Player 2.5.x prior to 2.5.3 build 185404, and VMware ACE 2.5.x prior to 2.5.3 build 185404 on Windows does not properly handle certai...
Vmware Ace 2.5.2
Vmware Ace 2.5.1
Vmware Player 2.5.1
Vmware Player 2.5.2
Vmware Workstation 6.5.1
Vmware Workstation 6.5.0
Vmware Workstation 6.5
Vmware Player 2.5
Vmware Movie Decoder 6.5.3
Vmware Workstation 6.5.2
Vmware Ace 2.5.0
NA
CVE-2014-3793
VMware Tools in VMware Workstation 10.x prior to 10.0.2, VMware Player 6.x prior to 6.0.2, VMware Fusion 6.x prior to 6.0.3, and VMware ESXi 5.0 up to and including 5.5, when a Windows 8.1 guest OS is used, allows guest OS users to gain guest OS privileges or cause a denial of se...
Vmware Player 6.0
Vmware Esxi 5.5
Vmware Esxi 5.1
Vmware Fusion 6.0.1
Vmware Workstation 10.0
Vmware Fusion 6.0
Vmware Esxi 5.0
Vmware Workstation 10.0.1
Vmware Fusion 6.0.2
Vmware Player 6.0.1
8.8
CVSSv3
CVE-2016-7461
The drag-and-drop (aka DnD) function in VMware Workstation Pro 12.x prior to 12.5.2 and VMware Workstation Player 12.x prior to 12.5.2 and VMware Fusion and Fusion Pro 8.x prior to 8.5.2 allows guest OS users to execute arbitrary code on the host OS or cause a denial of service (...
Vmware Fusion 8.0.0
Vmware Fusion 8.0.1
Vmware Fusion 8.0.2
Vmware Fusion 8.1.0
Vmware Fusion 8.1.1
Vmware Fusion 8.5.0
Vmware Fusion 8.5.1
Vmware Fusion Pro 8.0.0
Vmware Fusion Pro 8.0.1
Vmware Fusion Pro 8.0.2
Vmware Fusion Pro 8.1.0
Vmware Fusion Pro 8.1.1
Vmware Fusion Pro 8.5.0
Vmware Fusion Pro 8.5.1
Vmware Workstation Player 12.0.0
Vmware Workstation Player 12.0.1
Vmware Workstation Player 12.1.0
Vmware Workstation Player 12.1.1
Vmware Workstation Player 12.5.0
Vmware Workstation Player 12.5.1
Vmware Workstation Pro 12.0.0
Vmware Workstation Pro 12.0.1
8.8
CVSSv3
CVE-2019-5527
ESXi, Workstation, Fusion, VMRC and Horizon Client contain a use-after-free vulnerability in the virtual sound device. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 8.5.
Vmware Workstation
Vmware Horizon
Vmware Remote Console
Vmware Fusion
Vmware Esxi 6.0
Vmware Esxi 6.5
Vmware Esxi 6.7
6.7
CVSSv3
CVE-2021-22041
VMware ESXi, Workstation, and Fusion contain a double-fetch vulnerability in the UHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host.
Vmware Fusion -
Vmware Esxi 6.7
Vmware Esxi 7.0
Vmware Fusion
Vmware Cloud Foundation
Vmware Esxi 6.5
Vmware Workstation
NA
CVE-2009-0199
Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder prior to 6.5.3 build 185404, VMware Workstation 6.5.x prior to 6.5.3 build 185404, VMware Player 2.5.x prior to 2.5.3 build 185404, and VMware ACE 2.5.x prior to 2.5.3 build 185404 on Windows m...
Vmware Ace 2.5.2
Vmware Ace 2.5.1
Vmware Player 2.5.1
Vmware Player 2.5.2
Vmware Workstation 6.5.1
Vmware Workstation 6.5.0
Vmware Workstation 6.5
Vmware Player 2.5.2 Build 156735
Vmware Player 2.5
Vmware Movie Decoder 6.5.3
Vmware Workstation 6.5.2
Vmware Ace 2.5.0
NA
CVE-2014-1208
VMware Workstation 9.x prior to 9.0.1, VMware Player 5.x prior to 5.0.1, VMware Fusion 5.x prior to 5.0.1, VMware ESXi 4.0 up to and including 5.1, and VMware ESX 4.0 and 4.1 allow guest OS users to cause a denial of service (VMX process disruption) by using an invalid port.
Vmware Esxi 4.1
Vmware Esxi 4.0
Vmware Esxi 5.1
Vmware Esxi 5.0
Vmware Workstation 9.0
Vmware Fusion 5.0
Vmware Player 5.0
Vmware Esx 4.1
Vmware Esx 4.0
3.3
CVSSv3
CVE-2022-31699
VMware ESXi contains a heap-overflow vulnerability. A malicious local actor with restricted privileges within a sandbox process may exploit this issue to achieve a partial information disclosure.
Vmware Esxi 6.5
Vmware Esxi 6.7
Vmware Esxi 7.0
Vmware Cloud Foundation 4.0.1
Vmware Cloud Foundation 3.0.1
Vmware Cloud Foundation 3.0.1.1
Vmware Cloud Foundation 3.5
Vmware Cloud Foundation 3.5.1
Vmware Cloud Foundation 3.7
Vmware Cloud Foundation 3.7.1
Vmware Cloud Foundation 3.7.2
Vmware Cloud Foundation 3.8
Vmware Cloud Foundation 3.8.1
Vmware Cloud Foundation 3.9
Vmware Cloud Foundation 3.9.1
Vmware Cloud Foundation 3.10
Vmware Cloud Foundation 4.1
Vmware Cloud Foundation 4.2.1
Vmware Cloud Foundation 4.1.0.1
Vmware Cloud Foundation 3.0
Vmware Cloud Foundation 4.0
Vmware Cloud Foundation 3.11
1 Article
NA
CVE-2013-1405
VMware vCenter Server 4.0 before Update 4b and 4.1 before Update 3a, VMware VirtualCenter 2.5, VMware vSphere Client 4.0 before Update 4b and 4.1 before Update 3a, VMware VI-Client 2.5, VMware ESXi 3.5 up to and including 4.1, and VMware ESX 3.5 up to and including 4.1 do not pro...
Vmware Vcenter Server 4.0
Vmware Vcenter Server 4.1
Vmware Virtualcenter 2.5
Vmware Vsphere Client 4.0
Vmware Vsphere Client 4.1
Vmware Vi-client 2.5
Vmware Esxi 4.1
Vmware Esxi 4.0
Vmware Esxi 3.5
Vmware Esx 3.5
Vmware Esx 4.1
Vmware Esx 4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »