12997 matches found
GHSA-XMGF-J324-J5XQ vulnerabilities
Vulnerabilities for packages: linux-azure, linux-aws, linux-vmware, linux-gcp, linux-qemu...
CVE-2025-37906 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-aws, linux-vmware, linux-gcp, linux-qemu...
GHSA-V4W6-P754-7G2J vulnerabilities
Vulnerabilities for packages: linux-azure, linux-aws, linux-vmware, linux-gcp, linux-qemu...
CVE-2010-4563 vulnerabilities
Vulnerabilities for packages: linux-qemu-melange, linux-azure, linux-aws, linux-gcp, linux-vmware, linux-qemu-rc, linux-qemu...
GHSA-MRMF-653P-5VH8 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-aws, linux-vmware, linux-gcp, linux-qemu...
CVE-2025-23132 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-aws, linux-vmware, linux-gcp, linux-qemu...
GHSA-7848-X3WQ-CG7M vulnerabilities
Vulnerabilities for packages: linux-azure, linux-aws, linux-vmware, linux-gcp, linux-qemu...
CVE-2025-38584 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-aws, linux-vmware, linux-gcp, linux-qemu...
VMware Spring CLI VSCode Extension 安全漏洞
VMware Spring CLI VSCode Extension is a Visual Studio Code add-in from VMware, Inc. A security vulnerability exists in VMware Spring CLI VSCode Extension that originates from command injection and could lead to the execution of commands on a user's machine...
MiracleLinux 3 : kernel-2.6.18-53.17AXS3 (AXSA:2009-02:01)
The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2009-02:01 advisory. The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fixed a use-after-free issue during validation. The nodes stored in the validation duplicate hashtable originate from an arena allocator, which is cleared at the end of vmwexecbufprocess. All nodes are expected to be...
kernel: drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE
In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Validate command header size against SVGACMDMAXDATASIZE This data originates from userspace and is used in buffer offset calculations which could potentially overflow causing an out-of-bounds access...
MAESTRO Toolkit Exploiting VMware VM Escape Vulnerabilities
Cybersecurity researchers from Huntress detail a major VM Escape attack where hackers took over host servers. Using a secret toolkit called MAESTRO, the attackers stayed hidden for over a year. Read the exclusive details on how this breach was stopped and how to protect your network...
China-Linked Hackers Exploit VMware ESXi Zero-Days to Escape Virtual Machines
Chinese-speaking threat actors are suspected to have leveraged a compromised SonicWall VPN appliance as an initial access vector to deploy a VMware ESXi exploit that may have been developed as far back as February 2024. Cybersecurity firm Huntress, which observed the activity in December 2025 and...
CVE-2003-1291
VMware ESX Server 1.5.2 before Patch 4 allows local users to execute arbitrary programs as root via certain modified VMware ESX Server environment variables...
CVE-2021-22002
VMware Workspace ONE Access and Identity Manager, allow the /cfg web app and diagnostic endpoints, on port 8443, to be accessed via port 443 using a custom host header. A malicious actor with network access to port 443 could tamper with host headers to facilitate access to the /cfg web app, in...
CVE-2021-22055
The SchedulerServer in Vmware photon allows remote attackers to inject logs through \r in the package parameter. Attackers can also insert malicious data and fake entries...
CVE-2021-22040
VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the XHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host...
CVE-2021-22057
VMware Workspace ONE Access 21.08, 20.10.0.1, and 20.10 contain an authentication bypass vulnerability. A malicious actor, who has successfully provided first-factor authentication, may be able to obtain second-factor authentication provided by VMware Verify...
CVE-2021-22000
VMware Thinapp version 5.x prior to 5.2.10 contain a DLL hijacking vulnerability due to insecure loading of DLLs. A malicious actor with non-administrative privileges may exploit this vulnerability to elevate privileges to administrator level on the Windows operating system having VMware ThinApp...