Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
esx vulnerabilities and exploits
(subscribe to this query)
676
VMScore
CVE-2005-3618
Cross-site request forgery (CSRF) vulnerability in the management interface for VMware ESX Server 2.0.x prior to 2.0.2 patch 1, 2.1.x prior to 2.1.3 patch 1, and 2.x prior to 2.5.3 patch 2 allows allows remote malicious users to perform unauthorized actions as the administrator v...
Vmware Esx
187
VMScore
CVE-2005-3620
The management interface for VMware ESX Server 2.0.x prior to 2.0.2 patch 1, 2.1.x prior to 2.1.3 patch 1, and 2.x prior to 2.5.3 patch 2 records passwords in cleartext in URLs that are stored in world-readable web server log files, which allows local users to gain privileges.
Vmware Esx
383
VMScore
CVE-2009-2277
Cross-site scripting (XSS) vulnerability in WebAccess in VMware VirtualCenter 2.0.2 and 2.5 and VMware ESX 3.0.3 and 3.5 allows remote malicious users to inject arbitrary web script or HTML via vectors related to "context data."
Vmware Virtualcenter 2.5
Vmware Esx Server 3.0.3
Vmware Esx Server 3.5
Vmware Virtualcenter 2.0.2
668
VMScore
CVE-2013-3657
Buffer overflow in VMware ESXi 4.0 up to and including 5.0, and ESX 4.0 and 4.1, allows remote malicious users to execute arbitrary code or cause a denial of service via unspecified vectors.
Vmware Esxi 4.0
Vmware Esxi 5.0
Vmware Esx 4.0
Vmware Esx 4.1
Vmware Esxi 4.1
632
VMScore
CVE-2013-5970
hostd-vmdb in VMware ESXi 4.0 up to and including 5.0 and ESX 4.0 up to and including 4.1 allows remote malicious users to cause a denial of service (hostd-vmdb service outage) by modifying management traffic.
Vmware Esx 4.0
Vmware Esx 4.1
Vmware Esxi 4.0
Vmware Esxi 4.1
Vmware Esxi 5.0
505
VMScore
CVE-2010-3609
The extension parser in slp_v2message.c in OpenSLP 1.2.1, and other versions before SVN revision 1647, as used in Service Location Protocol daemon (SLPD) in VMware ESX 4.0 and 4.1 and ESXi 4.0 and 4.1, allows remote malicious users to cause a denial of service (infinite loop) via...
Vmware Esxi 4.0
Openslp Openslp 1.2.1
Vmware Esx 4.0
Vmware Esx 4.1
Vmware Esxi 4.1
1 EDB exploit
837
VMScore
CVE-2013-3658
Directory traversal vulnerability in VMware ESXi 4.0 up to and including 5.0, and ESX 4.0 and 4.1, allows remote malicious users to delete arbitrary host OS files via unspecified vectors.
Vmware Esxi 4.0
Vmware Esx 4.0
Vmware Esxi 4.1
Vmware Esx 4.1
Vmware Esxi 5.0
641
VMScore
CVE-2003-1291
VMware ESX Server 1.5.2 before Patch 4 allows local users to execute arbitrary programs as root via certain modified VMware ESX Server environment variables.
Vmware Esx 1.5.2
383
VMScore
CVE-2010-1137
Cross-site scripting (XSS) vulnerability in WebAccess in VMware VirtualCenter 2.0.2 and 2.5 and VMware ESX 3.0.3 and 3.5, and the Server Console in VMware Server 1.0, allows remote malicious users to inject arbitrary web script or HTML via the name of a virtual machine.
Vmware Virtualcenter 2.0.2
Vmware Virtualcenter 2.5
Vmware Server 1.0
Vmware Esx Server 3.0.3
Vmware Esx Server 3.5
668
VMScore
CVE-2010-0686
WebAccess in VMware VirtualCenter 2.0.2 and 2.5, VMware Server 2.0, and VMware ESX 3.0.3 and 3.5 allows remote malicious users to leverage proxy-server functionality to spoof the origin of requests via unspecified vectors, related to a "URL forwarding vulnerability."
Vmware Virtualcenter 2.0.2
Vmware Virtualcenter 2.5
Vmware Server 2.0.0
Vmware Esx Server 3.5
Vmware Esx Server 3.0.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »