Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware virtualcenter 2.5 vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2008-4278
VMware VirtualCenter 2.5 before Update 3 build 119838 on Windows displays a user's password in cleartext when the password contains unspecified special characters, which allows physically proximate malicious users to steal the password.
Vmware Virtualcenter 2.0.1
Vmware Virtualcenter 2.0.2
Vmware Virtualcenter
Vmware Virtualcenter 2.5
Vmware Virtualcenter 1.4.1
5
CVSSv2
CVE-2008-3514
VMware VirtualCenter 2.5 before Update 2 and 2.0.2 before Update 5 relies on client-side "enabled/disabled functionality" for access control, which allows remote malicious users to determine valid user names by enabling functionality in the GUI and then making an "...
Vmware Virtualcenter 2.0.2
Vmware Virtualcenter
Vmware Virtualcenter 2.5
4.3
CVSSv2
CVE-2009-2277
Cross-site scripting (XSS) vulnerability in WebAccess in VMware VirtualCenter 2.0.2 and 2.5 and VMware ESX 3.0.3 and 3.5 allows remote malicious users to inject arbitrary web script or HTML via vectors related to "context data."
Vmware Virtualcenter 2.5
Vmware Esx Server 3.0.3
Vmware Esx Server 3.5
Vmware Virtualcenter 2.0.2
4.3
CVSSv2
CVE-2010-1137
Cross-site scripting (XSS) vulnerability in WebAccess in VMware VirtualCenter 2.0.2 and 2.5 and VMware ESX 3.0.3 and 3.5, and the Server Console in VMware Server 1.0, allows remote malicious users to inject arbitrary web script or HTML via the name of a virtual machine.
Vmware Virtualcenter 2.0.2
Vmware Virtualcenter 2.5
Vmware Server 1.0
Vmware Esx Server 3.0.3
Vmware Esx Server 3.5
7.5
CVSSv2
CVE-2010-0686
WebAccess in VMware VirtualCenter 2.0.2 and 2.5, VMware Server 2.0, and VMware ESX 3.0.3 and 3.5 allows remote malicious users to leverage proxy-server functionality to spoof the origin of requests via unspecified vectors, related to a "URL forwarding vulnerability."
Vmware Virtualcenter 2.0.2
Vmware Virtualcenter 2.5
Vmware Server 2.0.0
Vmware Esx Server 3.5
Vmware Esx Server 3.0.3
4.3
CVSSv2
CVE-2011-0426
Directory traversal vulnerability in vCenter Server in VMware vCenter 4.0 before Update 3 and 4.1 before Update 1, and VMware VirtualCenter 2.5 before Update 6a, allows remote malicious users to read arbitrary files via unspecified vectors.
Vmware Vcenter 4.1
Vmware Vcenter 4.0
Vmware Virtualcenter 2.5
2.1
CVSSv2
CVE-2009-0518
VI Client in VMware VirtualCenter prior to 2.5 Update 4, VMware ESXi 3.5 before Update 4, and VMware ESX 3.5 before Update 4 retains the VirtualCenter Server password in process memory, which might allow local users to obtain this password.
Vmware Vmware Virtualcenter 1.4
Vmware Vmware Virtualcenter 1.4.1
Vmware Vmware Esx 3.5
Vmware Vmware Esxi 3.5
Vmware Vmware Virtualcenter 1.1
Vmware Vmware Virtualcenter 1.3
Vmware Vmware Virtualcenter 1.3.1
Vmware Vmware Virtualcenter 1.2
10
CVSSv2
CVE-2013-1405
VMware vCenter Server 4.0 before Update 4b and 4.1 before Update 3a, VMware VirtualCenter 2.5, VMware vSphere Client 4.0 before Update 4b and 4.1 before Update 3a, VMware VI-Client 2.5, VMware ESXi 3.5 up to and including 4.1, and VMware ESX 3.5 up to and including 4.1 do not pro...
Vmware Vcenter Server 4.1
Vmware Vcenter Server 4.0
Vmware Virtualcenter 2.5
Vmware Vsphere Client 4.0
Vmware Vsphere Client 4.1
Vmware Vi-client 2.5
Vmware Esxi 3.5
Vmware Esxi 4.1
Vmware Esxi 4.0
Vmware Esx 3.5
Vmware Esx 4.0
Vmware Esx 4.1
4.9
CVSSv2
CVE-2009-1072
nfsd in the Linux kernel prior to 2.6.28.9 does not drop the CAP_MKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a filesystem that has been exported with the root_squash option.
Linux Linux Kernel
Opensuse Opensuse 11.1
Opensuse Opensuse 11.0
Opensuse Opensuse 10.3
Suse Linux Enterprise Server 10
Suse Linux Enterprise Desktop 10
Debian Debian Linux 5.0
Debian Debian Linux 4.0
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 6.06
Vmware Vcenter Server 4.0
Vmware Virtualcenter 2.0.2
Vmware Virtualcenter 2.5
Vmware Server 2.0.0
Vmware Esx 3.5
Vmware Esx 4.0
Vmware Esx 3.0.3
Vmware Vma 4.0
7.1
CVSSv2
CVE-2009-0778
The icmp_send function in net/ipv4/icmp.c in the Linux kernel prior to 2.6.25, when configured as a router with a REJECT route, does not properly manage the Protocol Independent Destination Cache (aka DST) in some situations involving transmission of an ICMP Host Unreachable mess...
Linux Linux Kernel 2.6.11
Linux Linux Kernel 2.6.20.6
Linux Linux Kernel 2.6.4
Linux Linux Kernel 2.6.17
Linux Linux Kernel 2.6.20.9
Linux Linux Kernel 2.6.18
Linux Linux Kernel 2.6.23.4
Linux Linux Kernel 2.6.22.15
Linux Linux Kernel 2.6.16.16
Linux Linux Kernel 2.6.20
Linux Linux Kernel 2.6.18.7
Linux Linux Kernel 2.6.17.12
Linux Linux Kernel 2.6.16.39
Linux Linux Kernel 2.6.21
Linux Linux Kernel 2.6.16.9
Linux Linux Kernel 2.6.12
Linux Linux Kernel 2.6.17.9
Linux Linux Kernel 2.6.19
Linux Linux Kernel 2.6.14
Linux Linux Kernel 2.6.11.2
Linux Linux Kernel 2.6.5
Linux Linux Kernel 2.6.15.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started