vmware
950 tracked vulnerabilities.
CVE-2014-8373
VMware vCloud Automation Center 6.0.1-6.1.1 - Authenticated Privilege Escalation via VMRC Connect Function
Dec 11, 2014
EPSS 0.01
CVE-2014-8372
VMware AirWatch < 7.3.3.0 - Authenticated Exposure of Sensitive Information via Direct Object Reference
Dec 11, 2014
EPSS 0.00
CVE-2014-8371
VMware vCenter Server Appliance 5.0-5.5 - Certificate Validation Bypass via CIM Server Connection
Dec 08, 2014
EPSS 0.00
CVE-2014-3797
VMware vCenter Server Appliance 5.1 - Cross-Site Scripting
Dec 08, 2014
EPSS 0.00
CVE-2014-3625
Spring Framework 3.0.4-3.2.11, 4.0.0-4.0.7, 4.1.0-4.1.1 - Path Traversal via Static Resource Handling
Nov 20, 2014
EPSS 0.17
CVE-2014-7169
CRITICAL
KEV
GNU Bash < 4.3 - Remote Code Execution via Malformed Environment Variable Function Definitions
Sep 25, 2014
CVSS 9.8
EPSS 0.89
CVE-2014-6271
CRITICAL
KEVNUCLEI
Apache mod_cgi Bash Environment Variable Code Injection (Shellshock)
Sep 24, 2014
CVSS 9.8
EPSS 0.94
CVE-2014-3796
VMware NSX and vCloud Networking and Security - Information Disclosure via Improper Input Validation
Sep 15, 2014
EPSS 0.00
CVE-2014-4200
VMware Tools vm-support 0.88 - Sensitive Information Exposure via Archive Permissions
Aug 28, 2014
EPSS 0.00
CVE-2014-4199
vm-support 0.88 - Local Info Disclosure
Aug 28, 2014
EPSS 0.00
CVE-2014-4258
Oracle MySQL <5.5.38 & <5.6.18 - Info Disclosure
Jul 17, 2014
EPSS 0.01
CVE-2014-4241
Oracle WebLogic Server <10.3.6.0 - RCE
Jul 17, 2014
EPSS 0.01
CVE-2014-3790
VMware vCenter Server Appliance - Authenticated Remote Code Execution via Ruby vSphere Console Chroot Escape
Jun 01, 2014
EPSS 0.01
CVE-2014-3793
VMware Fusion 6.x < 6.0.3 - Denial of Service via Kernel NULL Pointer Dereference
May 31, 2014
EPSS 0.00
CVE-2014-0054
Spring Framework < 3.2.8 and 4.0.0-4.0.1 - XML External Entity Injection in Jaxb2RootElementHttpMessageConverter
Apr 17, 2014
EPSS 0.03
CVE-2014-2384
vmware Workstation 10.0.1-Player 6.0.1 - DoS
Apr 15, 2014
EPSS 0.00
CVE-2014-1210
VMware vSphere Client 5.0-5.1 - Certificate Validation Bypass
Apr 11, 2014
EPSS 0.00
CVE-2014-1209
VMware vSphere Client 4.0-5.1 - Remote Code Execution via Unvalidated Update
Apr 11, 2014
EPSS 0.04
CVE-2014-1211
VMware vCloud Director 5.1.x - Cross-Site Request Forgery via Logout Request
Jan 17, 2014
EPSS 0.00
CVE-2014-1208
VMware ESXi 4.0-5.1 and ESX 4.0-4.1 - Denial of Service via Invalid Port
Jan 17, 2014
EPSS 0.00
CVE-2014-1207
VMware ESXi 4.0-5.1 and ESX 4.0-4.1 - Denial of Service via NFC Traffic Modification
Jan 17, 2014
EPSS 0.01
CVE-2013-6429
Spring Framework < 3.2.5 - XML External Entity Injection and Cross-Site Request Forgery via Unsafe XML Parsing
Jan 26, 2014
EPSS 0.39
CVE-2013-7315
Spring Framework <4.0.0.M2 - Info Disclosure
Jan 23, 2014
EPSS 0.00
CVE-2013-4152
Spring Framework < 3.2.4 - XML External Entity Injection via JAXB Marshaller
Jan 23, 2014
EPSS 0.68
CVE-2013-5973
VMware ESX 4.0-4.1 and ESXi 4.0-5.5 - Arbitrary File Read and Write via vCenter Add Existing Disk Action
Dec 23, 2013
EPSS 0.00
Products
workstation 213
esxi 139
cloud_foundation 132
fusion 131
player 89
esx 86
vcenter_server 79
server 58
spring_framework 48
ace 44
identity_manager 28
workstation_pro 27
workstation_player 26
horizon_client 25
spring_security 24
Workstation 23
tools 22
vrealize_suite_lifecycle_manager 21
vrealize_automation 20
spring_boot 18
vrealize_operations 18
ESXi 16
vmware_workstation 15
vrealize_log_insight 15
workspace_one_access 15
horizon_view 14
spring_ai 14
vcenter_server_appliance 14
Fusion 13
aria_operations 13
Quick Filters