Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
virtualization vulnerabilities and exploits
(subscribe to this query)
892
VMScore
CVE-2016-3642
The RMI service in SolarWinds Virtualization Manager 6.3.1 and previous versions allows remote malicious users to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
Solarwinds Virtualization Manager
NA
CVE-2022-2805
A flaw was found in ovirt-engine, which leads to the logging of plaintext passwords in the log file when using otapi-style. This flaw allows an attacker with sufficient privileges to read the log file, leading to confidentiality loss.
Redhat Virtualization 4.0
383
VMScore
CVE-2012-1685
Unspecified vulnerability in the Secure Global Desktop component in Oracle Virtualization 4.6 allows remote malicious users to affect integrity via unknown vectors related to Core.
Oracle Virtualization 4.6
605
VMScore
CVE-2011-3538
Unspecified vulnerability in the Sun Ray component in Oracle Virtualization 4.0 allows remote malicious users to affect integrity, related to Authentication. NOTE: this identifier was inadvertently used for an Oracle Industry Applications issue involving TMS Help, but that issue ...
Oracle Virtualization 4.0
1 Article
543
VMScore
CVE-2016-2205
Directory traversal vulnerability in the file-download configuration file in the management console in Symantec Workspace Streaming (SWS) 7.5.x prior to 7.5 SP1 HF9 and 7.6.0 prior to 7.6 HF5 and Symantec Workspace Virtualization (SWV) 7.5.x prior to 7.5 SP1 HF9 and 7.6.0 prior t...
Symantec Workspace Virtualization 7.5.0
Symantec Workspace Streaming 7.5.0
Symantec Workspace Virtualization 7.6.0
Symantec Workspace Streaming 7.6.0
294
VMScore
CVE-2016-2206
The management console in Symantec Workspace Streaming (SWS) 7.5.x prior to 7.5 SP1 HF9 and 7.6.0 prior to 7.6 HF5 and Symantec Workspace Virtualization (SWV) 7.5.x prior to 7.5 SP1 HF9 and 7.6.0 prior to 7.6 HF5 allows remote authenticated users to read arbitrary files by modify...
Symantec Workspace Streaming 7.5.0
Symantec Workspace Virtualization 7.6.0
Symantec Workspace Virtualization 7.5.0
Symantec Workspace Streaming 7.6.0
187
VMScore
CVE-2014-3561
The rhevm-log-collector package in Red Hat Enterprise Virtualization 3.4 uses the PostgreSQL database password on the command line when calling sosreport, which allows local users to obtain sensitive information by listing the processes.
Redhat Enterprise Virtualization 3.4
187
VMScore
CVE-2010-2224
The snapshot merging functionality in Red Hat Enterprise Virtualization Manager (aka RHEV-M) prior to 2.2 does not properly pass the postzero parameter during operations on deleted volumes, which allows guest OS users to obtain sensitive information by examining the disk blocks a...
Redhat Enterprise Virtualization Manager
668
VMScore
CVE-2015-4727
Unspecified vulnerability in Oracle Virtualization Sun Ray Software prior to 5.4.4 allows remote malicious users to affect confidentiality, integrity, and availability via unknown vectors related to Web Console.
Oracle Virtualization Sun Ray
641
VMScore
CVE-2013-2152
Unquoted Windows search path vulnerability in the SPICE service, as used in Red Hat Enterprise Virtualization (RHEV) 3.2, allows local users to gain privileges via a crafted application in an unspecified folder.
Redhat Enterprise Virtualization 3.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »