Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware vcenter server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-4241
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0 and 10.3.6.0 allows remote malicious users to affect integrity via vectors related to WLS - Web Services.
Vmware Vcenter Server 5.0
Vmware Vcenter Server Appliance 5.1
Vmware Esxi 5.1
Vmware Vcenter Server 5.5
Vmware Vcenter Server 5.1
Oracle Fusion Middleware 10.0.2
Oracle Fusion Middleware 10.3.6
1 Github repository
NA
CVE-2014-3790
Ruby vSphere Console (RVC) in VMware vCenter Server Appliance allows remote authenticated users to execute arbitrary commands as root by escaping from a chroot jail.
Vmware Vcenter Server Appliance 5.1
Vmware Vcenter Server Appliance 5.5
NA
CVE-2013-5973
VMware ESXi 4.0 up to and including 5.5 and ESX 4.0 and 4.1 allow local users to read or modify arbitrary files by leveraging the Virtual Machine Power User or Resource Pool Administrator role for a vCenter Server Add Existing Disk action with a (1) -flat, (2) -rdm, or (3) -rdmp ...
Vmware Esx 4.1
Vmware Esx 4.0
Vmware Esxi 4.1
Vmware Esxi 4.0
Vmware Esxi 5.1
Vmware Esxi 5.0
NA
CVE-2013-5971
Session fixation vulnerability in the vSphere Web Client Server in VMware vCenter Server 5.0 before Update 3 allows remote malicious users to hijack web sessions and gain privileges via unspecified vectors.
Vmware Vcenter Server 5.0
Vmware Vcenter Server 4.1
Vmware Vcenter Server 4.1.0.17435
Vmware Vcenter Server 4.1.0.12319
Vmware Vcenter Server 4.0.0.10021
Vmware Vcenter Server 4.1.0.14766
Vmware Vcenter Server 4.0.0.12305
Vmware Vcenter Server
NA
CVE-2013-3079
VMware vCenter Server Appliance (vCSA) 5.1 before Update 1 allows remote authenticated users to execute arbitrary programs with root privileges by leveraging Virtual Appliance Management Interface (VAMI) access.
Vmware Vcenter Server Appliance 5.1
NA
CVE-2013-3080
VMware vCenter Server Appliance (vCSA) 5.1 before Update 1 allows remote authenticated users to create or overwrite arbitrary files, and consequently execute arbitrary code or cause a denial of service, by leveraging Virtual Appliance Management Interface (VAMI) web-interface acc...
Vmware Vcenter Server Appliance 5.1
NA
CVE-2013-3107
VMware vCenter Server 5.1 before Update 1, when anonymous LDAP binding for Active Directory is enabled, allows remote malicious users to bypass authentication by providing a valid username in conjunction with an empty password.
Vmware Vcenter Server Appliance 5.0
NA
CVE-2012-6326
VMware vCenter Server 4.1 before Update 3 and 5.0 before Update 2, and vCSA 5.0 before Update 2, allows remote malicious users to cause a denial of service (disk consumption) via vectors that trigger large log entries.
Vmware Vcenter Server 4.1
Vmware Vcenter Server 5.0
Vmware Vcenter Server Appliance 5.0
NA
CVE-2013-1659
VMware vCenter Server 4.0 before Update 4b, 5.0 before Update 2, and 5.1 prior to 5.1.0b; VMware ESXi 3.5 up to and including 5.1; and VMware ESX 3.5 up to and including 4.1 do not properly implement the Network File Copy (NFC) protocol, which allows man-in-the-middle malicious u...
Vmware Vcenter Server 4.0
Vmware Vcenter Server Appliance 5.1
Vmware Vcenter Server Appliance 5.1.0a
Vmware Vcenter Server 5.0
Vmware Esxi 4.1
Vmware Esxi 4.0
Vmware Esxi 3.5
Vmware Esxi 5.1
Vmware Esxi 5.0
NA
CVE-2013-1405
VMware vCenter Server 4.0 before Update 4b and 4.1 before Update 3a, VMware VirtualCenter 2.5, VMware vSphere Client 4.0 before Update 4b and 4.1 before Update 3a, VMware VI-Client 2.5, VMware ESXi 3.5 up to and including 4.1, and VMware ESX 3.5 up to and including 4.1 do not pro...
Vmware Vcenter Server 4.0
Vmware Vcenter Server 4.1
Vmware Virtualcenter 2.5
Vmware Vsphere Client 4.0
Vmware Vsphere Client 4.1
Vmware Vi-client 2.5
Vmware Esxi 4.1
Vmware Esxi 4.0
Vmware Esxi 3.5
Vmware Esx 3.5
Vmware Esx 4.1
Vmware Esx 4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »