Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2015-6933
The VMware Tools HGFS (aka Shared Folders) implementation in VMware Workstation 11.x prior to 11.1.2, VMware Player 7.x prior to 7.1.2, VMware Fusion 7.x prior to 7.1.2, and VMware ESXi 5.0 up to and including 6.0 allows Windows guest OS users to gain guest OS privileges or cause...
Vmware Player 7.1.1
Vmware Player 7.0
Vmware Player 7.1
Vmware Workstation 11.0
Vmware Workstation 11.1
Vmware Workstation 11.1.1
Vmware Esxi 5.0
Vmware Esxi 5.1
Vmware Esxi 6.0
Vmware Esxi 5.5
Vmware Fusion 7.1.1
Vmware Fusion 7.1
Vmware Fusion 7.0
1 Article
8.3
CVSSv2
CVE-2012-5458
VMware Workstation 8.x prior to 8.0.5 and VMware Player 4.x prior to 4.0.5 on Windows use weak permissions for unspecified process threads, which allows host OS users to gain host OS privileges via a crafted application.
Vmware Workstation 8.0.4
Vmware Workstation 8.0.2
Vmware Player 4.0.2
Vmware Player 4.0.1
Vmware Workstation 8.0.3
Vmware Player 4.0.3
Vmware Workstation 8.0.1
Vmware Workstation 8.0
Vmware Player 4.0.0.18997
Vmware Player 4.0.4
Vmware Workstation 8.0.0.18997
Vmware Workstation 8.0.1.27038
Vmware Player 4.0
3.3
CVSSv2
CVE-2015-1044
vmware-authd (aka the Authorization process) in VMware Workstation 10.x prior to 10.0.5, VMware Player 6.x prior to 6.0.5, and VMware ESXi 5.0 up to and including 5.5 allows malicious users to cause a host OS denial of service via unspecified vectors.
Vmware Workstation 10.0.3
Vmware Workstation 10.0.4
Vmware Workstation 10.0
Vmware Workstation 10.0.1
Vmware Workstation 10.0.2
Vmware Esxi 5.0
Vmware Esxi 5.5
Vmware Esxi 5.1
Vmware Player 6.0
Vmware Player 6.0.1
Vmware Player 6.0.2
Vmware Player 6.0.3
Vmware Player 6.0.4
7.8
CVSSv2
CVE-2009-3282
Integer overflow in the vmx86 kernel extension in VMware Fusion prior to 2.0.6 build 196839 allows host OS users to cause a denial of service to the host OS via unspecified vectors.
Vmware Fusion 2.0
Vmware Fusion 1.1.3
Vmware Fusion 1.1.2
Vmware Fusion 1.1.1
Vmware Fusion
Vmware Fusion 2.0.2
Vmware Fusion 1.0
Vmware Fusion 2.0.4
Vmware Fusion 2.0.3
Vmware Fusion 2.0.1
Vmware Fusion 1.1
3.6
CVSSv2
CVE-2006-3589
vmware-config.pl in VMware for Linux, ESX Server 2.x, and Infrastructure 3 does not check the return code from a Perl chmod function call, which might cause an SSL key file to be created with an unsafe umask that allows local users to read or modify the SSL key.
Vmware Esx 2.1.1
Vmware Esx 2.1.2
Vmware Esx 2.1
Vmware Server 1.0.1 Build 29996
Vmware Workstation 5.5.3
Vmware Esx 2.0.1
Vmware Infrastructure 3
Vmware Player
Vmware Esx 2.0
Vmware Esx 2.5
Vmware Esx 2.5.2
7.2
CVSSv2
CVE-2009-3281
The vmx86 kernel extension in VMware Fusion prior to 2.0.6 build 196839 does not use correct file permissions, which allows host OS users to gain privileges on the host OS via unspecified vectors.
Vmware Fusion 1.1.2
Vmware Fusion 1.1.1
Vmware Fusion 1.1
Vmware Fusion 1.0
Vmware Fusion 2.0.3
Vmware Fusion 2.0.1
Vmware Fusion 1.1.3
Vmware Fusion 2.0.4
Vmware Fusion
Vmware Fusion 2.0.2
Vmware Fusion 2.0
1 EDB exploit
6.9
CVSSv2
CVE-2008-4915
The CPU hardware emulation in VMware Workstation 6.0.5 and previous versions and 5.5.8 and previous versions; Player 2.0.x up to and including 2.0.5 and 1.0.x up to and including 1.0.8; ACE 2.0.x up to and including 2.0.5 and previous versions, and 1.0.x up to and including 1.0.7...
Vmware Workstation
Vmware Player
Vmware Esx
Vmware Esxi 3.5
Vmware Ace
Vmware Server
9.3
CVSSv2
CVE-2009-1565
vmnc.dll in the VMnc media codec in VMware Movie Decoder prior to 6.5.4 Build 246459 on Windows, and the movie decoder in VMware Workstation 6.5.x prior to 6.5.4 build 246459, VMware Player 2.5.x prior to 2.5.4 build 246459, and VMware Server 2.x on Windows, allows remote malicio...
Vmware Movie Decoder 6.5.3
Vmware Workstation 6.5.2
Vmware Workstation 6.5.3
Vmware Workstation 6.5.0
Vmware Workstation 6.5.1
Vmware Player 2.5.2
Vmware Player 2.5.3
Vmware Player 2.5
Vmware Player 2.5.1
Vmware Server 2.0.0
Vmware Server 2.0.1
Vmware Server 2.0.2
6.9
CVSSv2
CVE-2010-4295
Race condition in the mounting process in vmware-mount in VMware Workstation 7.x prior to 7.1.2 build 301548 on Linux, VMware Player 3.1.x prior to 3.1.2 build 301548 on Linux, VMware Server 2.0.2 on Linux, and VMware Fusion 3.1.x prior to 3.1.2 build 332101 allows host OS users ...
Vmware Workstation 7.0
Vmware Workstation 7.0.1
Vmware Workstation 7.1
Vmware Workstation 7.1.1
Vmware Workstation 7.1.2
Vmware Player 3.1
Vmware Player 3.1.1
Vmware Player 3.1.2
Vmware Server 2.0.2
Vmware Fusion 3.1
Vmware Fusion 3.1.1
Vmware Fusion 3.1.2
NA
CVE-2022-31656
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an authentication bypass vulnerability affecting local domain users. A malicious actor with network access to the UI may be able to obtain administrative access without the need to authenticate.
Vmware Identity Manager 3.3.4
Vmware Identity Manager 3.3.5
Vmware Identity Manager 3.3.6
Vmware One Access 21.08.0.0
Vmware One Access 21.08.0.1
Vmware Access Connector 21.08.0.0
Vmware Access Connector 21.08.0.1
Vmware Access Connector 22.05
Vmware Identity Manager Connector 3.3.4
Vmware Identity Manager Connector 3.3.5
Vmware Identity Manager Connector 3.3.6
Vmware Identity Manager Connector 19.03.0.1
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »