Vulnerabilidades em VMware

225 resultados

CVE-2023-34048CRITICALVMware vCenter Server Out-of-Bounds Write VulnerabilityEPSS 99.4%KEV CVE-2018-6961HIGHVMware NSX SD-WAN Edge by VeloCloud prior to version 3.1.0 contains a command injection vulnerability in the local web UI component. This coEPSS 86.4%KEV CVE-2023-20894HIGHThe VMware vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol. A malicious actor withEPSS 33.9%CVE-2017-4901—The drag-and-drop (DnD) function in VMware Workstation 12.x before version 12.5.4 and Fusion 8.x before version 8.5.5 has an out-of-bounds mEPSS 19.9%CVE-2019-5533—In VMware SD-WAN by VeloCloud versions 3.x prior to 3.3.0, the VeloCloud Orchestrator parameter authorization check mistakenly allows enterpEPSS 17.9%CVE-2026-22719HIGHVMware Aria Operations command injection vulnerabilityEPSS 17.4%KEV CVE-2023-20867LOWVMware Tools Authentication Bypass VulnerabilityEPSS 13.6%KEV CVE-2017-4914—VMware vSphere Data Protection (VDP) 6.1.x, 6.0.x, 5.8.x, and 5.5.x contains a deserialization issue. Exploitation of this issue may allow aEPSS 8.8%CVE-2017-4947—VMware vRealize Automation (7.3 and 7.2) and vSphere Integrated Containers (1.x before 1.3) contain a deserialization vulnerability via XenoEPSS 8.7%CVE-2025-41244HIGHVMSA-2025-0015: VMware Aria Operations and VMware Tools updates address multiple vulnerabilities (CVE-2025-41244,CVE-2025-41245, CVE-2025-41246)EPSS 7.6%KEV CVE-2017-4915—VMware Workstation Pro/Player contains an insecure library loading vulnerability via ALSA sound driver configuration files. Successful exploEPSS 5.4%CVE-2018-6968—The VMware AirWatch Agent for Android prior to 8.2 and AirWatch Agent for Windows Mobile prior to 6.5.2 contain a remote code execution vulnEPSS 5.1%CVE-2017-4916—VMware Workstation Pro/Player contains a NULL pointer dereference vulnerability that exists in the vstor2 driver. Successful exploitation ofEPSS 5.0%CVE-2017-4918—VMware Horizon View Client (2.x, 3.x and 4.x prior to 4.5.0) contains a command injection vulnerability in the service startup script. SucceEPSS 4.9%CVE-2019-5515—VMware Workstation (15.x before 15.0.3, 14.x before 14.1.6) and Fusion (11.x before 11.0.3, 10.x before 10.1.6) updates address an out-of-boEPSS 4.2%CVE-2019-5524—VMware Workstation (14.x before 14.1.6) and Fusion (10.x before 10.1.6) contain an out-of-bounds write vulnerability in the e1000 virtual neEPSS 4.1%CVE-2017-4952—VMware Xenon 1.x, prior to 1.5.4-CR7_1, 1.5.7_7, 1.5.4-CR6_2, 1.3.7-CR1_2, 1.1.0-CR0-3, 1.1.0-CR3_1,1.4.2-CR4_1, and 1.5.4_8, contains an auEPSS 4.1%CVE-2017-4907—VMware Unified Access Gateway (2.5.x, 2.7.x, 2.8.x prior to 2.8.1) and Horizon View (7.x prior to 7.1.0, 6.x prior to 6.2.4) contain a heap EPSS 3.8%CVE-2017-4933—VMware ESXi (6.5 before ESXi650-201710401-BG), Workstation (12.x before 12.5.8), and Fusion (8.x before 8.5.9) contain a vulnerability that EPSS 3.6%CVE-2019-5514—VMware VMware Fusion (11.x before 11.0.3) contains a security vulnerability due to certain unauthenticated APIs accessible through a web socEPSS 3.5%

← anteriorpágina 1 / 12próxima →