vmware
950 tracked vulnerabilities.
CVE-2019-5521
CRITICAL
VMware Fusion 10.0.0-10.1.5 and Workstation 14.0.0-14.1.5 - Out-of-bounds Read in Pixel Shader
Sep 20, 2019
CVSS 9.6
EPSS 0.00
CVE-2019-5531
MEDIUM
VMware ESXi and vCenter Server - Insufficient Session Expiration
Sep 18, 2019
CVSS 5.4
EPSS 0.00
CVE-2019-5534
HIGH
VMware vCenter Server < 6.7 U3, < 6.5 U3, < 6.0 U3j - Unprotected Credential Exposure via vAppConfig Properties
Sep 18, 2019
CVSS 7.7
EPSS 0.00
CVE-2019-5532
HIGH
VMware vCenter Server < 6.7 U3, < 6.5 U3, < 6.0 U3j - Credential Disclosure in OVF Deployment Logs
Sep 18, 2019
CVSS 7.7
EPSS 0.00
CVE-2019-5528
MEDIUM
VMware ESXi 6.5 - Partial Denial of Service in hostd Process
Jul 11, 2019
CVSS 5.3
EPSS 0.01
CVE-2019-11272
HIGH
Spring Security 4.2.x < 4.2.13 - Authentication Bypass via Null Password
Jun 26, 2019
CVSS 7.3
EPSS 0.00
CVE-2019-5525
HIGH
VMware Workstation 15.0.0-15.0.9 - Use-After-Free in ALSA Backend
Jun 06, 2019
CVSS 8.8
EPSS 0.00
CVE-2019-5522
HIGH
VMware Tools 10.2.x-10.3.x < 10.3.10 - Out-of-bounds Read in vm3dmp Driver
Jun 06, 2019
CVSS 7.1
EPSS 0.00
CVE-2019-5526
HIGH
VMware Workstation 15.0.0-15.0.x - DLL Hijacking Privilege Escalation
May 15, 2019
CVSS 7.8
EPSS 0.07
CVE-2019-3799
MEDIUM
NUCLEI
Spring Cloud Config < 1.4.6 - Path Traversal via Crafted URL
May 06, 2019
CVSS 6.5
EPSS 0.92
CVE-2019-5520
MEDIUM
VMware Fusion 10.0.0-10.1.5 and Workstation 14.0.0-14.1.5 - Out-of-bounds Read via 3D Graphics
Apr 15, 2019
CVSS 5.9
EPSS 0.00
CVE-2019-5517
MEDIUM
VMware Fusion 10.0.0-10.1.5 and Workstation 14.0.0-14.1.5 - Out-of-bounds Read in Shader Translator
Apr 15, 2019
CVSS 6.8
EPSS 0.00
CVE-2019-5516
MEDIUM
VMware ESXi 6.7 before ESXi670-201904101-SG and 6.5 before ESXi650-201903001 - Out-of-bounds Read in Vertex Shader
Apr 15, 2019
CVSS 6.8
EPSS 0.00
CVE-2019-5513
MEDIUM
VMware Horizon 6.0.0-6.2.7 - Information Disclosure
Apr 09, 2019
CVSS 5.3
EPSS 0.01
CVE-2019-5512
HIGH
VMware Workstation <15.0.3-14.1.6 - Privilege Escalation
Apr 09, 2019
CVSS 8.8
EPSS 0.00
CVE-2019-5511
HIGH
VMware Workstation <15.0.3-14.1.6 - Privilege Escalation
Apr 09, 2019
CVSS 8.8
EPSS 0.00
CVE-2019-3795
MEDIUM
Spring Security <4.2.12, 5.0.x<5.0.12, 5.1.x<5.1.5 - Info Disclosure
Apr 09, 2019
CVSS 5.3
EPSS 0.01
CVE-2019-5524
HIGH
VMware Fusion 10.0.0-10.1.5 and Workstation 14.0.0-14.1.5 - Out-of-bounds Write in e1000 Virtual Network Adapter
Apr 02, 2019
CVSS 8.8
EPSS 0.03
CVE-2019-5515
HIGH
VMware Fusion 10.0.0-10.1.5 and Workstation 14.0.0-14.1.5 - Out-of-bounds Write in e1000/e1000e Virtual Network Adapters
Apr 02, 2019
CVSS 8.8
EPSS 0.04
CVE-2019-5519
MEDIUM
VMware Fusion 10.0.0-10.1.5 - Time-of-check Time-of-use Race Condition in Virtual USB UHCI
Apr 01, 2019
CVSS 6.8
EPSS 0.00
CVE-2019-5518
MEDIUM
VMware Fusion 10.0.0-10.1.5 - Out-of-bounds Read/Write in Virtual USB 1.1 UHCI
Apr 01, 2019
CVSS 6.8
EPSS 0.00
CVE-2019-5514
HIGH
VMware Fusion 11.0.0-11.0.2 - Unauthenticated Remote Code Execution via WebSocket API
Apr 01, 2019
CVSS 8.8
EPSS 0.01
CVE-2019-5523
CRITICAL
VMware vCloud Director for Service Providers <9.5.0.3 - RCE
Apr 01, 2019
CVSS 9.8
EPSS 0.02
CVE-2019-3772
CRITICAL
Spring Integration < 4.3.18 - XML External Entity Injection
Jan 18, 2019
CVSS 9.8
EPSS 0.02
CVE-2018-15801
HIGH
Spring Security 5.1.x < 5.1.2 - Authorization Bypass via JWT Issuer Validation
Dec 19, 2018
CVSS 7.4
EPSS 0.00
Products
workstation 213
esxi 139
cloud_foundation 132
fusion 131
player 89
esx 86
vcenter_server 79
server 58
spring_framework 48
ace 44
identity_manager 28
workstation_pro 27
workstation_player 26
horizon_client 25
spring_security 24
Workstation 23
tools 22
vrealize_suite_lifecycle_manager 21
vrealize_automation 20
spring_boot 18
vrealize_operations 18
ESXi 16
vmware_workstation 15
vrealize_log_insight 15
workspace_one_access 15
horizon_view 14
spring_ai 14
vcenter_server_appliance 14
Fusion 13
aria_operations 13
Quick Filters