Vulnerabilidades en VMware

225 resultados
CVE-2020-3959VMware ESXi (6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), VMware Workstation (15.x before 15.1.0) and VMware FusionEPSS 0.3%CVE-2024-38831HIGHLocal privilege escalation vulnerability (CVE-2024-38831)EPSS 0.3%CVE-2022-22962VMware Horizon Agent for Linux (prior to 22.x) contains a local privilege escalation as a user is able to change the default shared folder lEPSS 0.3%CVE-2025-41254MEDIUMSpring Framework STOMP CSRF VulnerabilityEPSS 0.3%CVE-2020-3948Linux Guest VMs running on VMware Workstation (15.x before 15.5.2) and Fusion (11.x before 11.5.2) contain a local privilege escalation vulnEPSS 0.3%CVE-2018-6975The AirWatch Agent for iOS prior to 5.8.1 contains a data protection vulnerability whereby the files and keychain entries in the Agent are nEPSS 0.3%CVE-2025-41233MEDIUMDescription: VMware AVI Load Balancer contains an authenticated blind SQL Injection vulnerability. VMware has evaluated the severity of theEPSS 0.3%CVE-2025-41235HIGHCVE-2025-41235: Spring Cloud Gateway Server Forwards Headers from Untrusted ProxiesEPSS 0.3%CVE-2025-22238MEDIUMCVE-2025-22238 salt advisoryEPSS 0.3%CVE-2025-41246HIGHImproper authorisation vulnerabilityEPSS 0.3%CVE-2025-41241MEDIUMDenial-of-service vulnerabilityEPSS 0.3%CVE-2025-22244MEDIUMVMware NSX contains a stored Cross-Site Scripting (XSS) vulnerability in the gateway firewall due to improper input validation.EPSS 0.3%CVE-2026-41712HIGHChatMemory DEFAULT_CONVERSATION_ID causes unintended cross-user data leakageEPSS 0.3%CVE-2025-22215MEDIUMVMSA-2025-0001: VMware Aria automation update addresses a server side request forgery vulnerability (CVE-2025-22215)EPSS 0.2%CVE-2026-2818HIGHZip Slip Path Traversal in Snapshot Archive Extraction (Windows-Specific)EPSS 0.2%CVE-2026-22741LOWStatic resource cache poisoning in Spring MVC and WebFluxEPSS 0.2%CVE-2026-40966MEDIUMVectorStoreChatMemoryAdvisor conversation scoping can lead to cross-tenant memory exfiltrationEPSS 0.2%CVE-2022-22964VMware Horizon Agent for Linux (prior to 22.x) contains a local privilege escalation that allows a user to escalate to root due to a vulneraEPSS 0.2%CVE-2025-41225HIGHVMware vCenter Server authenticated command-execution vulnerabilityEPSS 0.2%CVE-2025-41226MEDIUMGuest Operations Denial-of-Service VulnerabilityEPSS 0.2%