42 matches found
VMware ESXi和vCenter Server 安全漏洞
VMware ESXi and VMware vCenter Server are both products of VMware, Inc. VMware ESXi is a server virtualization platform that can be installed directly on physical servers. vMware vCenter Server is a suite of server and virtualization management software. The software provides a centralized platfo...
The vulnerability of the rhttpproxy service of the VMware Cloud Foundation virtualization platform and the VMware ESXi hypervisor allows a attacker to cause a service failure.
The vulnerability of the rhttpproxy service of the VMware Cloud Foundation virtualization platform and the VMware ESXi hypervisor is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...
OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.
...
Citrix Provisioning Services - Machine Creation Fails While Running The PVS CVAD Setup Wizard
The PVS CVAD Setup Wizard fails to create new virtual machines when running on a VMware Hypervisor. vCenter displays an error when the CVAD Setup Wizard fails to complete its task similar to the following: Unable to find device or file /Failed to clone a VM, error: Invalid configuration for devic...
The vulnerability of the VMware ESXi hypervisor and the VMware Cloud Foundation virtualization platform allows a perpetrator to execute arbitrary code.
The vulnerability of the VMware ESXi hypervisor and the VMware Cloud Foundation virtualization platform is related to the lack of protection for operational data. Exploiting this vulnerability can allow attackers to enhance their privileges...
Vulnerabilities fixed in VMware ESXi, Workstation and Fusion
VMWare has fixed two vulnerabilities in VMWare Workstation, ESXi and Fusion. A malicious person with authorization in a virtual environment could exploit the vulnerabilities to break out of the virtual environment and execute arbitrary code with the permissions of the virtualization process on th...
VulnCheck KEV: CVE-2019-5544
VMware ESXi and Horizon Desktop as a Service DaaS OpenSLP contains a heap-based buffer overflow vulnerability that allows an attacker with network access to port 427 to overwrite the heap of the OpenSLP service to perform remote code execution...
The vulnerability of the VMware ESXi hypervisor, related to the lack of protective measures for the website structure, allows attackers to execute a cross-site scripting attack.
The vulnerability of the VMware ESXi hypervisor is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to perform a cross-site scripting attack remotely...
The vulnerability of VMware ESXi, VMware Fusion, and VMware Workstations relates to the occurrence of operations outside the buffer boundaries in memory, which allows an attacker to trigger a system failure.
The vulnerability of VMware ESXi, VMware Fusion, and VMware Workstations lies in the fact that operations are executed outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of XHCI controllers in VMware ESXi, VMware Workstation, and VMware Fusion allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of XHCI controllers in VMware ESXi, VMware Workstation, and VMware Fusion lies in the lack of protection for service data. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...
CVE-2020-3970
VMware ESXi 7.0 before ESXi7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG, Workstation 15.x before 15.5.5, and Fusion 11.x before 11.5.5 contain an out-of-bounds read vulnerability in the Shader functionality. A malicious actor with non-administrative loc...
PT-2020-3016 · Vmware · Vmware Esxi +2
Name of the Vulnerable Software and Affected Versions: VMware ESXi versions 7.0 before ESXi 7.0.0-1.20.16321839 VMware ESXi versions 6.7 before ESXi670-202006401-SG VMware ESXi versions 6.5 before ESXi650-202005401-SG VMware Workstation versions 15.x before 15.5.2 VMware Fusion versions 11.x befo...
CVE-2019-5544
OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8...
VMware ESXi, VMware Workstation and VMware Fusion Denial of Service Vulnerabilities
VMware ESXi is a server virtualization platform that can be installed directly on physical servers, VMware Workstation is a set of virtual machine software, and VMware Fusion is a set of virtual machine software designed to run Windows applications on Macs. VMware Fusion is a suite of virtual...
The vulnerability in the implementation of 3D-acceleration functions for hypervisors such as VMware ESXi, VMware Fusion, and Vmware Workstation allows attackers to exploit it to disclose sensitive information or cause system failures during maintenance.
The vulnerability of the 3D-acceleration function implementation in VMware ESXi, VMware Fusion, and Vmware Workstation relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information or cause system failur...
The vulnerability of SVGA device implementations in VMware ESXi, VMware Fusion, and Vmware Workstation arises from operations that go beyond buffer boundaries in memory, allowing attackers to execute arbitrary code on the host system.
The vulnerability of SVGA devices in hypervisors such as VMware ESXi, VMware Fusion, and Vmware Workstation arises from operations that occur outside the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code on the host system remotely...
CVE-2018-6982
VMware ESXi 6.7 without ESXi670-201811401-BG and VMware ESXi 6.5 without ESXi650-201811301-BG contain uninitialized stack memory usage in the vmxnet3 virtual network adapter which may lead to an information leak from host to guest...
CVE-2018-6966
VMware ESXi 6.7 before ESXi670-201806401-BG, Workstation 14.x before 14.1.2, and Fusion 10.x before 10.1.2 contain an out-of-bounds read vulnerability in the shader translator. Successful exploitation of this issue may lead to information disclosure or may allow attackers with normal user...
CVE-2018-6967
VMware ESXi 6.7 before ESXi670-201806401-BG, Workstation 14.x before 14.1.2, and Fusion 10.x before 10.1.2 contain an out-of-bounds read vulnerability in the shader translator. Successful exploitation of this issue may lead to information disclosure or may allow attackers with normal user...
High Availability Failovers Due to Missed HA HeartBeats of NetScaler VPX on VMware ESX Hypervisor
NetScaler VPX on VMWare hypervisor High Availability failsover due to missed HA heartbeats. Note : This article only pertains to NetScaler VPX on VMWare hypervisor. Background Root cause of the HA failovers is missing heartbeats due to VPX scheduling issues on the VMware host. The NetScaler’s...