Lucene search
K

13053 matches found

CNNVD
CNNVD
added 2024/03/05 12:0 a.m.6 views

VMware Security Vulnerabilities in Multiple Products

VMware ESXi is a server virtualization platform that can be installed directly on physical servers, VMware Workstation is a set of virtual machine software, and VMware Fusion is a set of virtual machine software designed to run Windows applications on Macs. VMware Fusion is a suite of virtual...

9.3CVSS6.8AI score0.00645EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/03/05 12:0 a.m.3 views

PT-2024-1974 · Vmware · Vmware Esxi +2

Name of the Vulnerable Software and Affected Versions: VMware ESXi, Workstation, and Fusion affected versions not specified Description: The issue is related to a use-after-free vulnerability in the UHCI USB controller. A malicious actor with local administrative privileges on a virtual machine m...

9.3CVSS9.3AI score0.00645EPSS
Exploits0References33
OpenVAS
OpenVAS
added 2024/03/05 12:0 a.m.27 views

CentOS: Security Advisory for open-vm-tools (CESA-2023:7279)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.4AI score0.00667EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/03/04 12:0 a.m.5 views

The vulnerability of the USB CCID component of the VMware Workstation virtualization platform and the VMware Fusion hypervisor allows a hacker to disclose protected information.

The vulnerability of the USB CCID component of the VMware Workstation virtualization platform and the VMware Fusion hypervisor is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information that i...

5.9CVSS6.5AI score0.00226EPSS
Exploits0References3Affected Software2
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.21 views

openSUSE: Security Advisory for systemd (SUSE-SU-2022:2866-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.01158EPSS
Exploits0References2
HackRead
HackRead
added 2024/03/02 1:12 p.m.18 views

New Bifrost RAT Variant Targets Linux Devices, Mimics VMware Domain

By Waqas Bifrost RAT, also known as Bifrose, was originally identified two decades ago in 2004. This is a post from HackRead.com Read the original post: New Bifrost RAT Variant Targets Linux Devices, Mimics VMware Domain...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2024/03/01 10:56 a.m.49 views

New BIFROSE Linux Malware Variant Using Deceptive VMware Domain for Evasion

Cybersecurity researchers have discovered a new Linux variant of a remote access trojan RAT called BIFROSE aka Bifrost that uses a deceptive domain mimicking VMware. "This latest version of Bifrost aims to bypass security measures and compromise targeted systems," Palo Alto Networks Unit 42...

7.5AI score
Exploits0
NVD
NVD
added 2024/02/29 1:44 a.m.15 views

CVE-2024-22251

VMware Workstation and Fusion contain an out-of-bounds read vulnerability in the USB CCID chip card interface device. A malicious actor with local administrative privileges on a virtual machine may trigger an out-of-bounds read leading to information disclosure...

5.9CVSS5.4AI score0.00226EPSS
Exploits0References1
Prion
Prion
added 2024/02/29 1:44 a.m.19 views

Out-of-bounds

VMware Workstation and Fusion contain an out-of-bounds read vulnerability in the USB CCID chip card interface device. A malicious actor with local administrative privileges on a virtual machine may trigger an out-of-bounds read leading to information disclosure...

1.2CVSS6.4AI score0.00226EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/02/29 12:0 a.m.6 views

VMware Workstation Security Vulnerability

VMware Workstation is a set of virtual machine software from VMware. The software provides the ability to run multiple virtual machines with different operating systems at the same time. A security vulnerability exists in VMware Workstation and Fusion, which was discovered to contain an...

5.9CVSS7AI score0.00226EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/02/29 12:0 a.m.4 views

The vulnerability of the monitoring tool for VMware Aria Operations, related to deficiencies in access control, allows a perpetrator to escalate their privileges.

The vulnerability of the monitoring tool for VMware Aria Operations is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to enhance their privileges...

6.7CVSS6.6AI score0.00194EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/27 5:35 p.m.11 views

CVE-2024-22251 Out-of-bounds read vulnerability

VMware Workstation and Fusion contain an out-of-bounds read vulnerability in the USB CCID chip card interface device. A malicious actor with local administrative privileges on a virtual machine may trigger an out-of-bounds read leading to information disclosure...

5.9CVSS6.3AI score0.00226EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/27 5:35 p.m.18 views

CVE-2024-22251 Out-of-bounds read vulnerability

VMware Workstation and Fusion contain an out-of-bounds read vulnerability in the USB CCID chip card interface device. A malicious actor with local administrative privileges on a virtual machine may trigger an out-of-bounds read leading to information disclosure...

5.9CVSS5.7AI score0.00226EPSS
Exploits0References1
CVE
CVE
added 2024/02/27 5:35 p.m.162 views

CVE-2024-22251

VMware Workstation and Fusion contain an out-of-bounds read in the USB CCID (chip card interface device). A malicious actor with local administrative privileges inside a VM may trigger an out-of-bounds read, leading to information disclosure. Publicly documented impact and remediation are tied to...

5.9CVSS5.4AI score0.00226EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/02/27 12:0 a.m.17 views

VMware Fusion 13.0.x < 13.5.1 Vulnerability (VMSA-2024-0005)

The version of VMware Fusion installed on the remote macOS or Mac OS X host is 13.0.x prior to 13.5.1. It is, therefore, affected by a vulnerability. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900...

5.9CVSS6AI score0.00226EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/02/27 12:0 a.m.24 views

VMware Workstation 17.0.x < 17.5.1 Vulnerability (VMSA-2024-0005)

The version of VMware Workstation installed on the remote host is 17.0.x prior to 17.5.1. It is, therefore, affected by a vulnerability. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable,...

5.9CVSS6.3AI score0.00226EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2024/02/27 12:0 a.m.19 views

KLA64629 OSI vulnerability in VMWare Workstation

Out of bounds read vulnerability was found in VMWare Workstation. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories VMSA-2024-0005 Related products VMware-Workstation CVE list CVE-2024-22251 warning Solution Update to the latest version Download...

5.9CVSS5.9AI score0.00226EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/02/27 12:0 a.m.4 views

PT-2024-1938 · Vmware · Vmware Workstation +1

Name of the Vulnerable Software and Affected Versions: VMware Workstation and Fusion affected versions not specified Description: The issue is related to an out-of-bounds read vulnerability in the USB CCID chip card interface device of VMware Workstation and Fusion. A malicious actor with local...

5.9CVSS5.2AI score0.00226EPSS
Exploits0References9
CNVD
CNVD
added 2024/02/22 12:0 a.m.14 views

Dell RecoverPoint for Virtual Machines Code Issue Vulnerability

Dell RecoverPoint for VMs is a disaster recovery solution for VMware environments from Dell, Inc. A code issue vulnerability exists in Dell RecoverPoint for Virtual Machines version 5.3.x, which stems from the inclusion of an operating system command injection vulnerability. No details of the...

9.8CVSS7.5AI score0.01403EPSS
Exploits0References1
CNVD
CNVD
added 2024/02/22 12:0 a.m.21 views

Dell RecoverPoint for Virtual Machines Brute Force Vulnerability

Dell RecoverPoint for Virtual Machines is a disaster recovery solution for VMware environments from Dell. A brute force vulnerability exists in Dell RecoverPoint for Virtual Machines, which can be exploited by an attacker to brute-force break a valid user's password in an automated fashion...

9.8CVSS6.9AI score0.00458EPSS
Exploits0References1
Rows per page
Query Builder