Lucene search
K

13052 matches found

Vulnrichment
Vulnrichment
added 2024/05/21 5:29 p.m.14 views

CVE-2024-22273

The storage controllers on VMware ESXi, Workstation, and Fusion have out-of-bounds read/write vulnerability. A malicious actor with access to a virtual machine with storage controllers enabled may exploit this issue to create a denial of service condition or execute code on the hypervisor from a...

8.1CVSS7.2AI score0.00163EPSS
Exploits0References1
CVE
CVE
added 2024/05/21 5:29 p.m.120 views

CVE-2024-22273

CVE-2024-22273 affects VMware ESXi, Workstation, and Fusion storage controllers, with an out-of-bounds read/write flaw that may let a VM-adjacent attacker cause a denial of service or, in conjunction with other issues, execute code on the hypervisor. Exploitation is described as local (requires a...

8.1CVSS7.1AI score0.00163EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2024/05/21 5:29 p.m.20 views

CVE-2024-22273

The storage controllers on VMware ESXi, Workstation, and Fusion have out-of-bounds read/write vulnerability. A malicious actor with access to a virtual machine with storage controllers enabled may exploit this issue to create a denial of service condition or execute code on the hypervisor from a...

8.1CVSS8.2AI score0.00163EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/21 3:23 p.m.28 views

CVE-2023-52739 Fix page corruption caused by racy check in __free_pages

In the Linux kernel, the following vulnerability has been resolved: Fix page corruption caused by racy check in freepages When we upgraded our kernel, we started seeing some page corruption like the following consistently: BUG: Bad page state in process ganesha.nfsd pfn:1304ca page:0000000022261c...

6.7AI score0.0025EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/05/21 2:0 a.m.3 views

SUSE CVE-2024-35810

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix the lifetime of the bo cursor memory The cleanup can be dispatched while the atomic update is still active, which means that the memory acquired in the atomic update needs to not be invalidated by the cleanup. The...

5.5CVSS7AI score0.00225EPSS
Exploits0References13
CNNVD
CNNVD
added 2024/05/21 12:0 a.m.2 views

VMware ESXi 安全漏洞

VMware ESXi is a suite of server virtualization platforms from VMware that can be installed directly on physical servers. A security vulnerability exists in VMware ESXi, VMware Workstation, and VMware Fusion that stems from the presence of an out-of-bounds read/write, which could be exploited by ...

8.1CVSS7.8AI score0.00163EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/21 12:0 a.m.4 views

VMware vCenter Server 安全漏洞

VMware vCenter Server is a suite of server and virtualization management software from VMware. The software provides a centralized platform for managing VMware vSphere environments, automating the implementation and delivery of virtual infrastructures. A security vulnerability exists in VMware...

4.9CVSS6.7AI score0.00986EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/05/21 12:0 a.m.5 views

PT-2024-4600 · Vmware · Vmware Vcenter Server +1

Name of the Vulnerable Software and Affected Versions: VMware vCenter Server affected versions not specified Description: The vCenter Server contains an authenticated remote code execution vulnerability. A malicious actor with administrative privileges on the vCenter appliance shell may exploit...

8.3CVSS7.5AI score0.02488EPSS
Exploits3References34
CNNVD
CNNVD
added 2024/05/21 12:0 a.m.2 views

VMware vCenter Server 安全漏洞

VMware vCenter Server is a suite of server and virtualization management software from VMware. The software provides a centralized platform for managing VMware vSphere environments, automating the implementation and delivery of virtual infrastructures. A security vulnerability exists in VMware...

7.2CVSS7.3AI score0.02488EPSS
Exploits3References3
VMware
VMware
added 2024/05/21 12:0 a.m.22 views

VMSA-2024-0011:VMware ESXi, Workstation, Fusion and vCenter Server updates address multiple security vulnerabilities (CVE-2024-22273, CVE-2024-22274, CVE-2024-22275)

Advisory ID: | VMSA-2024-0011.1 ---|--- Advisory Severity: | Important CVSSv3 Range: | 4.9-8.1 Synopsis: | VMware ESXi, Workstation, Fusion and vCenter Server updates address multiple security vulnerabilities CVE-2024-22273, CVE-2024-22274, CVE-2024-22275 Issue date: | 2024-05-21 Issue date: |...

8.1CVSS8.5AI score0.02488EPSS
Exploits3References24Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/05/20 12:0 a.m.5 views

The vulnerability of the vbluetooth components in VMware Fusion and Vmware Workstation allows a hacker to execute arbitrary code.

The vulnerability of the vbluetooth components in VMware Fusion and Vmware Workstation relates to the possibility of using memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

8.8CVSS8.1AI score0.00684EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2024/05/17 2:15 p.m.8 views

DEBIAN-CVE-2023-52662

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: fix a memleak in vmwgmridmangetnode When idaallocmax fails, resources allocated before should be freed, including res allocated by kmalloc and ttmresourceinit...

5.5CVSS5.7AI score0.00228EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2024/05/17 7:26 a.m.460 views

Exploit for Incorrect Authorization in Vmware Spring_Security

CVE-2022-22978-demo Example code for the CVE-2022-22978 vuln...

9.8CVSS6.8AI score0.10037EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2024/05/16 12:0 a.m.40 views

VMware Workstation 17.0.x < 17.5.2 Multiple Vulnerabilities (VMSA-2024-0010)

The version of VMware Workstation installed on the remote host is 17.0.x prior to 17.5.2. It is, therefore, affected by multiple vulnerabilities. - VMware Workstation and Fusion contain a use-after-free vulnerability in the vbluetooth device. CVE-2024-22267 - VMware Workstation contains a heap...

9.3CVSS6AI score0.00684EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/05/16 12:0 a.m.28 views

VMware Fusion 13.0.x < 13.5.2 Multiple Vulnerabilities (VMSA-2024-0010)

The version of VMware Fusion installed on the remote macOS or Mac OS X host is 13.0.x prior to 13.5.2. It is, therefore, affected by multiple vulnerabilities. - VMware Workstation and Fusion contain a use-after-free vulnerability in the vbluetooth device. CVE-2024-22267 - VMware Workstation...

9.3CVSS6AI score0.00684EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2024/05/15 10:55 a.m.12 views

It's Time to Master the Lift & Shift: Migrating from VMware vSphere to Microsoft Azure

While cloud adoption has been top of mind for many IT professionals for nearly a decade, it's only in recent months, with industry changes and announcements from key players, that many recognize the time to make the move is now. It may feel like a daunting task, but tools exist to help you move...

7.2AI score
Exploits0
OSV
OSV
added 2024/05/14 4:16 p.m.2 views

CVE-2024-22270

VMware Workstation and Fusion contain an information disclosure vulnerability in the Host Guest File Sharing HGFS functionality. A malicious actor with local administrative privileges on a virtual machine may be able to read privileged information contained in hypervisor memory from a virtual...

6CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2024/05/14 4:16 p.m.12 views

CVE-2024-22270

VMware Workstation and Fusion contain an information disclosure vulnerability in the Host Guest File Sharing HGFS functionality. A malicious actor with local administrative privileges on a virtual machine may be able to read privileged information contained in hypervisor memory from a virtual...

7.1CVSS6.8AI score0.00505EPSS
Exploits0References1
NVD
NVD
added 2024/05/14 4:16 p.m.15 views

CVE-2024-22269

VMware Workstation and Fusion contain an information disclosure vulnerability in the vbluetooth device. A malicious actor with local administrative privileges on a virtual machine may be able to read privileged information contained in hypervisor memory from a virtual machine...

7.1CVSS6.8AI score0.00505EPSS
Exploits0References1
OSV
OSV
added 2024/05/14 4:16 p.m.2 views

CVE-2024-22269

VMware Workstation and Fusion contain an information disclosure vulnerability in the vbluetooth device. A malicious actor with local administrative privileges on a virtual machine may be able to read privileged information contained in hypervisor memory from a virtual machine...

6CVSS5.8AI score0.00505EPSS
Exploits0References1
Rows per page
Query Builder