13052 matches found
PT-2024-3757 · Vmware · Vmware Workstation +1
Name of the Vulnerable Software and Affected Versions: VMware Workstation and Fusion affected versions not specified Description: The issue is related to an information disclosure vulnerability in the Host Guest File Sharing HGFS functionality. A malicious actor with local administrative privileg...
VMware Workstation 缓冲区错误漏洞
VMware Workstation is a suite of virtual machine software from VMware. The software provides the ability to run multiple virtual machines with different operating systems at the same time. A security vulnerability exists in VMware Workstation. An attacker could exploit this vulnerability to cause...
VMSA-2024-0010: VMware Workstation and Fusion updates address multiple security vulnerabilities (CVE-2024-22267, CVE-2024-22268, CVE-2024-22269, CVE-2024-22270)
Advisory ID: | VMSA-2024-0010 ---|--- Advisory Severity: | Critical CVSSv3 Range: | 7.1-9.3 Synopsis: | VMware Workstation and Fusion updates address multiple security vulnerabilities CVE-2024-22267, CVE-2024-22268, CVE-2024-22269, CVE-2024-22270 Issue date: | 2024-05-14 Updated on: | 2024-05-14...
PT-2024-3756 · Vmware · Vmware Workstation +1
Name of the Vulnerable Software and Affected Versions: VMware Workstation and Fusion affected versions not specified Description: The issue is related to a heap buffer-overflow vulnerability in the Shader functionality of VMware Workstation and Fusion. A malicious actor with non-administrative...
PT-2024-3566
Name of the Vulnerable Software and Affected Versions VMware Workstation and Fusion affected versions not specified Description The issue is related to a use-after-free vulnerability in the vbluetooth device of VMware Workstation and Fusion. A malicious actor with local administrative privileges ...
PT-2024-3771 · Vmware · Vmware Workstation +1
Name of the Vulnerable Software and Affected Versions: VMware Workstation and Fusion affected versions not specified Description: The issue is related to an information disclosure vulnerability in the vbluetooth device of VMware Workstation and Fusion. A malicious actor with local administrative...
Security Bulletin: IBM Sterling Connect:Direct Web Service is vulnerable to multiple vulnerabilities due to IBM Java
Summary IBM Sterling Connect:Direct Web Service uses IBM Java SE. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2023-40167 DESCRIPTION: Jetty is vulnerable to HTTP request smuggling, caused by improper parsing of the HTTP/1 request...
Exploit for Code Injection in Vmware Spring_Cloud_Function
CVE-2022-22963 En las versiones 3.1.6, 3.2.2 y versiones anter...
CVE-2024-22266
VMware Avi Load Balancer contains an information disclosure vulnerability. A malicious actor with access to the system logs can view cloud connection credentials in plaintext...
CVE-2024-22264
VMware Avi Load Balancer contains a privilege escalation vulnerability. A malicious actor with admin privileges on VMware Avi Load Balancer can create, modify, execute and delete files as a root user on the host system...
CVE-2024-22266 VMware Avi Load Balancer updates address multiple vulnerabilities
VMware Avi Load Balancer contains an information disclosure vulnerability. A malicious actor with access to the system logs can view cloud connection credentials in plaintext...
CVE-2024-22266
CVE-2024-22266 concerns VMware Avi Load Balancer. An information disclosure vulnerability allows a malicious actor with access to system logs to view cloud connection credentials in plaintext. The CVSS 3.1 base score is 6.5 (Network, Low attack complexity, Privileges Required: Low; Confidentialit...
CVE-2024-22266 VMware Avi Load Balancer updates address multiple vulnerabilities
VMware Avi Load Balancer contains an information disclosure vulnerability. A malicious actor with access to the system logs can view cloud connection credentials in plaintext...
CVE-2024-22264
CVE-2024-22264 affects VMware Avi Load Balancer. The available connected documents describe a privilege escalation where an administrator on the appliance can create, modify, execute, and delete files as root on the host system, indicating a local-privilege escalation vulnerability. The CVSS v3.1...
CVE-2024-22264 VMware Avi Load Balancer updates address multiple vulnerabilities
VMware Avi Load Balancer contains a privilege escalation vulnerability. A malicious actor with admin privileges on VMware Avi Load Balancer can create, modify, execute and delete files as a root user on the host system...
CVE-2024-22264 VMware Avi Load Balancer updates address multiple vulnerabilities
VMware Avi Load Balancer contains a privilege escalation vulnerability. A malicious actor with admin privileges on VMware Avi Load Balancer can create, modify, execute and delete files as a root user on the host system...
VMware Avi Load Balancer 安全漏洞
VMware Avi Load Balancer is a load balancing platform from VMware, Inc. A security vulnerability exists in VMware Avi Load Balancer, which can be exploited by a malicious attacker with administrator privileges to VMware Avi Load Balancer to create, modify, execute, and delete files as the root us...
VMware Avi Load Balancer 安全漏洞
VMware Avi Load Balancer is a load balancing platform from VMware. A security vulnerability exists in VMware Avi Load Balancer that originates from a malicious actor with access to system logs being able to view cloud connection credentials in plaintext...
PT-2024-19296 · Vmware · Vmware Avi Load Balancer
Name of the Vulnerable Software and Affected Versions: VMware Avi Load Balancer affected versions not specified Description: The issue concerns an information disclosure problem where a malicious actor with access to the system logs can view cloud connection credentials in plaintext...
VMSA-2024-0005:VMware Workstation and Fusion updates address an out-of-bounds read vulnerability (CVE-2024-22251)
Advisory ID: | VMSA-2024-0005 ---|--- Advisory Severity: | Moderate CVSSv3 Range: | 5.9 Synopsis: | VMware Workstation and Fusion updates address an out-of-bounds read vulnerability CVE-2024-22251 Issue date: | 2024-02-27 Updated on: | 2024-02-27 Initial Advisory CVEs | CVE-2024-22251 1. Impacted...