Lucene search
K

13053 matches found

Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.21 views

RHEL 8 : open-vm-tools (RHSA-2023:7262)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7262 advisory. The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualizati...

7.5CVSS6.7AI score0.00667EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.36 views

RHEL 8 : open-vm-tools (RHSA-2023:7261)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7261 advisory. The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualizati...

7.5CVSS6.7AI score0.00667EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.23 views

RHEL 8 : open-vm-tools (RHSA-2023:7265)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7265 advisory. The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualizati...

7.5CVSS6.7AI score0.00667EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.22 views

RHEL 8 : open-vm-tools (RHSA-2023:7260)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7260 advisory. The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualizati...

7.5CVSS6.7AI score0.00667EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.28 views

RHEL 9 : open-vm-tools (RHSA-2023:7267)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7267 advisory. The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualizati...

7.5CVSS6.7AI score0.00667EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.24 views

RHEL 9 : open-vm-tools (RHSA-2023:7277)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7277 advisory. The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualizati...

7.5CVSS6.7AI score0.00667EPSS
Exploits0References6
OSV
OSV
added 2023/11/15 12:0 a.m.28 views

ALSA-2023:7265 Important: open-vm-tools security update

The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines. Security Fixes: open-vm-tools: SAML token signature bypass CVE-2023-34058...

7.5CVSS7.5AI score0.00667EPSS
Exploits0References6
AlmaLinux
AlmaLinux
added 2023/11/15 12:0 a.m.44 views

Important: open-vm-tools security update

The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines. Security Fixes: open-vm-tools: SAML token signature bypass CVE-2023-34058...

7.5CVSS7.2AI score0.00667EPSS
Exploits0References6
AlmaLinux
AlmaLinux
added 2023/11/15 12:0 a.m.30 views

Important: open-vm-tools security update

The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines. Security Fixes: open-vm-tools: SAML token signature bypass CVE-2023-34058...

7.5CVSS7AI score0.00667EPSS
Exploits0References6
OSV
OSV
added 2023/11/15 12:0 a.m.32 views

ALSA-2023:7277 Important: open-vm-tools security update

The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines. Security Fixes: open-vm-tools: SAML token signature bypass CVE-2023-34058...

7.5CVSS7.5AI score0.00667EPSS
Exploits0References6
OSV
OSV
added 2023/11/14 9:15 p.m.2 views

CVE-2023-34060

VMware Cloud Director Appliance contains an authentication bypass vulnerability in case VMware Cloud Director Appliance was upgraded to 10.5 from an older version. On an upgraded version of VMware Cloud Director Appliance 10.5, a malicious actor with network access to the appliance can bypass log...

9.8CVSS5.8AI score0.01345EPSS
Exploits4References4
NVD
NVD
added 2023/11/14 9:15 p.m.42 views

CVE-2023-34060

VMware Cloud Director Appliance contains an authentication bypass vulnerability in case VMware Cloud Director Appliance was upgraded to 10.5 from an older version. On an upgraded version of VMware Cloud Director Appliance 10.5, a malicious actor with network access to the appliance can bypass log...

9.8CVSS0.01345EPSS
Exploits4References4
Prion
Prion
added 2023/11/14 9:15 p.m.37 views

Authentication flaw

VMware Cloud Director Appliance contains an authentication bypass vulnerability in case VMware Cloud Director Appliance was upgraded to 10.5 from an older version. On an upgraded version of VMware Cloud Director Appliance 10.5, a malicious actor with network access to the appliance can bypass log...

7.5CVSS7.9AI score0.01345EPSS
Exploits4References4Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/14 8:20 p.m.12 views

CVE-2023-34060

VMware Cloud Director Appliance contains an authentication bypass vulnerability in case VMware Cloud Director Appliance was upgraded to 10.5 from an older version. On an upgraded version of VMware Cloud Director Appliance 10.5, a malicious actor with network access to the appliance can bypass log...

7.8AI score0.01345EPSS
Exploits4References4
Cvelist
Cvelist
added 2023/11/14 8:20 p.m.51 views

CVE-2023-34060

VMware Cloud Director Appliance contains an authentication bypass vulnerability in case VMware Cloud Director Appliance was upgraded to 10.5 from an older version. On an upgraded version of VMware Cloud Director Appliance 10.5, a malicious actor with network access to the appliance can bypass log...

10AI score0.01345EPSS
Exploits4References4
CVE
CVE
added 2023/11/14 8:20 p.m.499 views

CVE-2023-34060

The CVE-2023-34060 entry concerns VMware Cloud Director Appliance. On upgrades to version 10.5, an authentication bypass can be triggered by a remote actor with network access to the appliance, bypassing login restrictions on ports 22 (SSH) or 5480 (appliance management). The bypass does not appl...

9.8CVSS10AI score0.01345EPSS
Exploits4References4Affected Software1
RedHat Linux
RedHat Linux
added 2023/11/14 3:46 p.m.5 views

kernel: drm/vmwgfx: Fix memory leak in vmw_mksstat_add_ioctl()

A memory leak vulnerability was found in the VMware graphics driver vmwgfx in the Linux kernel. In vmwmksstataddioctl, when copying the description string from userspace fails with -EFAULT, the allocated page for the instance descriptor is not freed. This leads to memory leakage that can cause...

7.2AI score0.002EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/11/14 3:46 p.m.1 views

kernel: Linux kernel: Denial of Service in vmwgfx due to invalid DMA surface copies

A flaw was discovered in the Linux kernel’s DRM vmwgfx driver related to how cursor images are snooped and copied. When the dimensions of a DMA surface copybox were derived from untrusted userspace data without proper validation against the expected snooped cursor size, an invalid size could caus...

5.5CVSS7.4AI score0.00149EPSS
Exploits0References5
CISA
CISA
added 2023/11/14 12:0 p.m.12 views

VMware Releases Security Update for Cloud Director Appliance

VMware has released a security advisory addressing a vulnerability in VMWare Cloud Director Appliance. Cyber threat actors may exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review the following VMware security advisory and apply the...

9.8CVSS8.8AI score0.01345EPSS
Exploits4References1
VMware
VMware
added 2023/11/14 12:0 a.m.66 views

VMware Cloud Director Appliance contains an authentication bypass vulnerability (CVE-2023-34060).

3. Authentication Bypass Vulnerability CVE-2023-34060 VMware Cloud Director Appliance contains an authentication bypass vulnerability in case VMware Cloud Director Appliance was upgraded to 10.5 from an older version. VMware has evaluated the severity of this issue to be in the Critical severity...

7.5CVSS10AI score0.01345EPSS
Exploits4References6Affected Software1
Rows per page
Query Builder