vmware
950 tracked vulnerabilities.
CVE-2020-3947
HIGH
VMware Workstation <15.5.2, Fusion <11.5.2 - Use After Free
Mar 16, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-5405
MEDIUM
NUCLEI
Spring Cloud Config <2.2.2 & <2.1.7 - Path Traversal
Mar 05, 2020
CVSS 6.5
EPSS 0.88
CVE-2020-3945
HIGH
vRealize Operations for Horizon Adapter <6.7.1-6.6.1 - Info Disclosure
Feb 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-3944
HIGH
vRealize Operations for Horizon Adapter <6.7.1 & 6.6.1 - Auth Bypass
Feb 19, 2020
CVSS 8.6
EPSS 0.00
CVE-2020-3943
CRITICAL
vRealize Operations for Horizon Adapter <6.7.1-6.6.1 - RCE
Feb 19, 2020
CVSS 9.8
EPSS 0.02
CVE-2020-5397
MEDIUM
Spring Framework 5.2.x < 5.2.3 - Cross-Site Request Forgery via CORS Preflight Requests
Jan 17, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-3940
MEDIUM
VMware Workspace ONE SDK - Info Disclosure
Jan 17, 2020
CVSS 5.9
EPSS 0.00
CVE-2020-5398
HIGH
Spring Framework 5.0.0-5.0.15, 5.1.0-5.1.12, 5.2.0-5.2.2 - Reflected File Download via Content-Disposition Header
Jan 17, 2020
CVSS 7.5
EPSS 0.90
CVE-2020-3941
HIGH
VMware Tools <11 - Privilege Escalation
Jan 15, 2020
CVSS 7.0
EPSS 0.00
CVE-2019-11286
CRITICAL
VMware GemFire < 9.7.5 and Tanzu GemFire for VMs < 1.8.2 - Authenticated Remote Code Execution via JMX Service
Jul 31, 2020
CVSS 9.1
EPSS 0.03
CVE-2019-5543
HIGH
VMware Horizon Client 5.0.0-5.2.9 - Incorrect Permission Assignment for Critical Resource
Mar 16, 2020
CVSS 7.8
EPSS 0.00
CVE-2019-5539
HIGH
VMware Workstation <15.5.1 & Horizon View Agent DLL Hijacking
Dec 23, 2019
CVSS 7.8
EPSS 0.00
CVE-2019-5544
CRITICAL
KEVNUCLEI
VMware Horizon DaaS 8.0.0-8.9.9 - Heap Overflow via OpenSLP
Dec 06, 2019
CVSS 9.8
EPSS 0.92
CVE-2019-5098
HIGH
AMD ATIDXX64.DLL <26.20.13001.29010 - Memory Corruption
Dec 05, 2019
CVSS 8.6
EPSS 0.01
CVE-2019-11291
MEDIUM
RabbitMQ 3.7.0-3.7.19 and 3.8.0 - Authenticated Cross-Site Scripting via Federation and Shovel Endpoints
Nov 22, 2019
CVSS 4.8
EPSS 0.00
CVE-2019-5542
HIGH
VMware Workstation <15.5.1-Fusion <11.5.1 - DoS
Nov 20, 2019
CVSS 7.7
EPSS 0.00
CVE-2019-5541
CRITICAL
VMware Workstation 15.0.0-15.5.0 and Fusion 11.0.0-11.5.0 - Out-of-bounds Write in e1000e Virtual Network Adapter
Nov 20, 2019
CVSS 9.1
EPSS 0.01
CVE-2019-5540
HIGH
VMware Workstation 15.0.0-15.5.0 and Fusion 11.0.0-11.5.0 - Information Disclosure via vmnetdhcp Memory Leak
Nov 20, 2019
CVSS 7.7
EPSS 0.00
CVE-2019-5533
MEDIUM
VMware SD-WAN by VeloCloud 3.1.1-3.2.x - Incorrect Authorization
Oct 29, 2019
CVSS 4.3
EPSS 0.01
CVE-2019-5538
MEDIUM
VMware vCenter Server 6.5-6.7 - Sensitive Information Disclosure via File-Based Backup and Restore
Oct 28, 2019
CVSS 5.9
EPSS 0.00
CVE-2019-5537
MEDIUM
VMware vCenter Server 6.5-6.7 - Sensitive Information Disclosure via FTPS/HTTPS Certificate Validation Bypass
Oct 28, 2019
CVSS 5.9
EPSS 0.00
CVE-2019-5536
MEDIUM
VMware ESXi <6.7-ESXi670-201908101-SG & <6.5-ESXi650-201910401-SG, ...
Oct 28, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-16919
HIGH
Harbor 1.8.0-1.8.2 - Broken Access Control via Robot Account Creation
Oct 18, 2019
CVSS 7.5
EPSS 0.00
CVE-2019-5535
MEDIUM
VMware Fusion 11.0.0-11.4.9 and Workstation 15.0.0-15.4.9 - Denial of Service via IPv6 Packet Handling
Oct 10, 2019
CVSS 4.7
EPSS 0.00
CVE-2019-5527
HIGH
VMware Horizon < 5.2.0 - Use-After-Free in Virtual Sound Device
Oct 10, 2019
CVSS 8.8
EPSS 0.00
Products
workstation 213
esxi 139
cloud_foundation 132
fusion 131
player 89
esx 86
vcenter_server 79
server 58
spring_framework 48
ace 44
identity_manager 28
workstation_pro 27
workstation_player 26
horizon_client 25
spring_security 24
Workstation 23
tools 22
vrealize_suite_lifecycle_manager 21
vrealize_automation 20
spring_boot 18
vrealize_operations 18
ESXi 16
vmware_workstation 15
vrealize_log_insight 15
workspace_one_access 15
horizon_view 14
spring_ai 14
vcenter_server_appliance 14
Fusion 13
aria_operations 13
Quick Filters