vmware

950 tracked vulnerabilities.

CVE-2015-5191 MEDIUM
VMware Tools < 10.0.9 - Local Privilege Escalation via Hard-Coded /tmp Path Race Condition
Jul 28, 2017
CVSS 6.7
EPSS 0.00
CVE-2015-5211 CRITICAL
Spring Framework <4.2.1, 3.2.14 - RFD
May 25, 2017
CVSS 9.6
EPSS 0.02
CVE-2015-3192 MEDIUM
Pivotal Spring Framework <3.2.14 & 4.x <4.1.7 - DoS
Jul 12, 2016
CVSS 5.5
EPSS 0.01
CVE-2015-6931 MEDIUM
VMware vCenter Server 5.0-5.5 - Cross-Site Scripting via Crafted URL
Jul 03, 2016
CVSS 6.1
EPSS 0.00
CVE-2015-2344 MEDIUM
VMware vRealize Automation 6.x - Authenticated Cross-Site Scripting
Mar 16, 2016
CVSS 5.4
EPSS 0.00
CVE-2015-6933 MEDIUM
VMware Player and Workstation - Improper Access Control in Shared Folders
Jan 09, 2016
CVSS 6.3
EPSS 0.02
CVE-2015-6934 HIGH
VMware vRealize Orchestrator 6.x and vCenter Orchestrator 5.x - Remote Code Execution via Deserialization
Dec 21, 2015
CVSS 7.3
EPSS 0.02
CVE-2015-2342
VMware vCenter Server 5.0-5.5 and 6.0 - Remote Code Execution via JMX RMI MBean Registration
Oct 12, 2015
EPSS 0.92
CVE-2015-1047
VMware vCenter Server <5.0u3e, <5.1u3, <5.5u2 - DoS
Oct 12, 2015
EPSS 0.03
CVE-2015-6932
VMware vCenter Server 5.5-6.0 - Unauthenticated Man-in-the-Middle via Unverified TLS LDAP Certificates
Sep 18, 2015
EPSS 0.00
CVE-2015-3650
VMware <10.0.7-11.1.1 - Privilege Escalation
Jul 10, 2015
EPSS 0.00
CVE-2015-2341
VMware Fusion 6.x-7.x and Player 6.x - Denial of Service via Crafted RPC Command
Jun 13, 2015
EPSS 0.01
CVE-2015-2340
VMware Horizon Client 3.2.x-3.3.x and 5.x - Denial of Service via TPInt.dll Memory Allocation
Jun 13, 2015
EPSS 0.00
CVE-2015-2339
VMware Horizon Client 3.2.x-3.2.1, 3.3.x, 5.x < 5.4.2 - Denial of Service via TPview.dll Memory Allocation
Jun 13, 2015
EPSS 0.00
CVE-2015-2338
VMware Horizon Client 3.2.x-3.2.1, 3.3.x, 5.x < 5.4.2 - Denial of Service in TPview.dll
Jun 13, 2015
EPSS 0.00
CVE-2015-2337
VMware Workstation 10.x-11.x, Player 6.x-7.x, Horizon Client 3.2.x-5.x - Remote Code Execution
Jun 13, 2015
EPSS 0.00
CVE-2015-2336
VMware Workstation, Player, and Horizon Client - Remote Code Execution in TPView.dll
Jun 13, 2015
EPSS 0.00
CVE-2015-0201
Spring Framework 4.1.x < 4.1.5 - Predictable Session ID Generation in Java SockJS Client
Mar 10, 2015
EPSS 0.00
CVE-2015-1044
VMware Workstation <10.0.5-ESXi 5.5 - DoS
Jan 29, 2015
EPSS 0.00
CVE-2015-1043
VMware Workstation/Fusion/Player <10.0.5-7.0.1 - DoS
Jan 29, 2015
EPSS 0.00
CVE-2014-3527 CRITICAL
Spring Security 3.1-3.2.4 - Improper Authentication via CAS Proxy Ticket
May 25, 2017
CVSS 9.8
EPSS 0.00
CVE-2014-0225 HIGH
Spring Framework 3.0.0-3.2.8 and 4.0.0-4.0.4 - XML External Entity Injection
May 25, 2017
CVSS 8.8
EPSS 0.00
CVE-2014-0097 HIGH
Spring Security <3.2.1, <3.1.5 - Info Disclosure
May 25, 2017
CVSS 7.3
EPSS 0.00
CVE-2014-4632
VMware VDP <5.5.9-5.8.1 - Auth Bypass
Feb 01, 2015
EPSS 0.00
CVE-2014-8370
VMware Player 6.x < 6.0.5 - Privilege Escalation and Arbitrary File Write via Configuration File Modification
Jan 29, 2015
EPSS 0.01
Products
workstation 213 esxi 139 cloud_foundation 132 fusion 131 player 89 esx 86 vcenter_server 79 server 58 spring_framework 48 ace 44 identity_manager 28 workstation_pro 27 workstation_player 26 horizon_client 25 spring_security 24 Workstation 23 tools 22 vrealize_suite_lifecycle_manager 21 vrealize_automation 20 spring_boot 18 vrealize_operations 18 ESXi 16 vmware_workstation 15 vrealize_log_insight 15 workspace_one_access 15 horizon_view 14 spring_ai 14 vcenter_server_appliance 14 Fusion 13 aria_operations 13
Quick Filters
Critical CVEs With Exploits In CISA KEV