Lucene search
K

42 matches found

CNNVD
CNNVD
added 2022/12/09 12:0 a.m.6 views

VMware ESXi和vCenter Server 安全漏洞

VMware ESXi and VMware vCenter Server are both products of VMware, Inc. VMware ESXi is a server virtualization platform that can be installed directly on physical servers. vMware vCenter Server is a suite of server and virtualization management software. The software provides a centralized platfo...

5.3CVSS6.6AI score0.47795EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2022/04/15 12:0 a.m.5 views

The vulnerability of the rhttpproxy service of the VMware Cloud Foundation virtualization platform and the VMware ESXi hypervisor allows a attacker to cause a service failure.

The vulnerability of the rhttpproxy service of the VMware Cloud Foundation virtualization platform and the VMware ESXi hypervisor is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

7.8CVSS7.4AI score0.0228EPSS
Exploits0References5Affected Software1
Microsoft CVE
Microsoft CVE
added 2022/01/19 8:0 a.m.5 views

OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.

...

9.8CVSS8.2AI score0.96823EPSS
Exploits1
Citrix
Citrix
added 2021/07/27 12:0 a.m.11 views

Citrix Provisioning Services - Machine Creation Fails While Running The PVS CVAD Setup Wizard

The PVS CVAD Setup Wizard fails to create new virtual machines when running on a VMware Hypervisor. vCenter displays an error when the CVAD Setup Wizard fails to complete its task similar to the following: Unable to find device or file /Failed to clone a VM, error: Invalid configuration for devic...

7.1AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2020/12/03 12:0 a.m.3 views

The vulnerability of the VMware ESXi hypervisor and the VMware Cloud Foundation virtualization platform allows a perpetrator to execute arbitrary code.

The vulnerability of the VMware ESXi hypervisor and the VMware Cloud Foundation virtualization platform is related to the lack of protection for operational data. Exploiting this vulnerability can allow attackers to enhance their privileges...

8.8CVSS7.5AI score0.00382EPSS
Exploits0References3Affected Software1
NCSC
NCSC
added 2020/11/20 12:0 a.m.3 views

Vulnerabilities fixed in VMware ESXi, Workstation and Fusion

VMWare has fixed two vulnerabilities in VMWare Workstation, ESXi and Fusion. A malicious person with authorization in a virtual environment could exploit the vulnerabilities to break out of the virtual environment and execute arbitrary code with the permissions of the virtualization process on th...

8.2CVSS7.8AI score0.00392EPSS
Exploits0
VulnCheck KEV
VulnCheck KEV
added 2020/11/11 12:0 a.m.5 views

VulnCheck KEV: CVE-2019-5544

VMware ESXi and Horizon Desktop as a Service DaaS OpenSLP contains a heap-based buffer overflow vulnerability that allows an attacker with network access to port 427 to overwrite the heap of the OpenSLP service to perform remote code execution...

9.8CVSS7.8AI score0.96823EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2020/07/17 12:0 a.m.5 views

The vulnerability of the VMware ESXi hypervisor, related to the lack of protective measures for the website structure, allows attackers to execute a cross-site scripting attack.

The vulnerability of the VMware ESXi hypervisor is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to perform a cross-site scripting attack remotely...

9.3CVSS7.4AI score0.01309EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/07/17 12:0 a.m.4 views

The vulnerability of VMware ESXi, VMware Fusion, and VMware Workstations relates to the occurrence of operations outside the buffer boundaries in memory, which allows an attacker to trigger a system failure.

The vulnerability of VMware ESXi, VMware Fusion, and VMware Workstations lies in the fact that operations are executed outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.3AI score0.00293EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2020/07/09 12:0 a.m.7 views

The vulnerability of XHCI controllers in VMware ESXi, VMware Workstation, and VMware Fusion allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of XHCI controllers in VMware ESXi, VMware Workstation, and VMware Fusion lies in the lack of protection for service data. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

5.5CVSS5.9AI score0.00587EPSS
Exploits2References4Affected Software3
OSV
OSV
added 2020/06/25 3:15 p.m.5 views

CVE-2020-3970

VMware ESXi 7.0 before ESXi7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG, Workstation 15.x before 15.5.5, and Fusion 11.x before 11.5.5 contain an out-of-bounds read vulnerability in the Shader functionality. A malicious actor with non-administrative loc...

3.8CVSS5.8AI score0.00382EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2020/06/23 12:0 a.m.4 views

PT-2020-3016 · Vmware · Vmware Esxi +2

Name of the Vulnerable Software and Affected Versions: VMware ESXi versions 7.0 before ESXi 7.0.0-1.20.16321839 VMware ESXi versions 6.7 before ESXi670-202006401-SG VMware ESXi versions 6.5 before ESXi650-202005401-SG VMware Workstation versions 15.x before 15.5.2 VMware Fusion versions 11.x befo...

5.5CVSS4.9AI score0.0055EPSS
Exploits2References13
OSV
OSV
added 2019/12/06 4:15 p.m.2 views

CVE-2019-5544

OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8...

9.8CVSS7.2AI score0.96823EPSS
Exploits1References9
CNVD
CNVD
added 2019/10/28 12:0 a.m.2 views

VMware ESXi, VMware Workstation and VMware Fusion Denial of Service Vulnerabilities

VMware ESXi is a server virtualization platform that can be installed directly on physical servers, VMware Workstation is a set of virtual machine software, and VMware Fusion is a set of virtual machine software designed to run Windows applications on Macs. VMware Fusion is a suite of virtual...

6.5CVSS6.5AI score0.02117EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/07/04 12:0 a.m.4 views

The vulnerability in the implementation of 3D-acceleration functions for hypervisors such as VMware ESXi, VMware Fusion, and Vmware Workstation allows attackers to exploit it to disclose sensitive information or cause system failures during maintenance.

The vulnerability of the 3D-acceleration function implementation in VMware ESXi, VMware Fusion, and Vmware Workstation relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information or cause system failur...

8.8CVSS5.7AI score0.01666EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2018/12/20 12:0 a.m.3 views

The vulnerability of SVGA device implementations in VMware ESXi, VMware Fusion, and Vmware Workstation arises from operations that go beyond buffer boundaries in memory, allowing attackers to execute arbitrary code on the host system.

The vulnerability of SVGA devices in hypervisors such as VMware ESXi, VMware Fusion, and Vmware Workstation arises from operations that occur outside the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code on the host system remotely...

5.5CVSS8.3AI score0.00475EPSS
Exploits0References7Affected Software3
OSV
OSV
added 2018/12/04 2:29 p.m.2 views

CVE-2018-6982

VMware ESXi 6.7 without ESXi670-201811401-BG and VMware ESXi 6.5 without ESXi650-201811301-BG contain uninitialized stack memory usage in the vmxnet3 virtual network adapter which may lead to an information leak from host to guest...

6.5CVSS5.8AI score0.00452EPSS
Exploits0References3
OSV
OSV
added 2018/07/09 8:29 p.m.3 views

CVE-2018-6966

VMware ESXi 6.7 before ESXi670-201806401-BG, Workstation 14.x before 14.1.2, and Fusion 10.x before 10.1.2 contain an out-of-bounds read vulnerability in the shader translator. Successful exploitation of this issue may lead to information disclosure or may allow attackers with normal user...

8.1CVSS5.8AI score0.02257EPSS
Exploits0References3
OSV
OSV
added 2018/07/09 8:29 p.m.3 views

CVE-2018-6967

VMware ESXi 6.7 before ESXi670-201806401-BG, Workstation 14.x before 14.1.2, and Fusion 10.x before 10.1.2 contain an out-of-bounds read vulnerability in the shader translator. Successful exploitation of this issue may lead to information disclosure or may allow attackers with normal user...

8.1CVSS5.8AI score0.02257EPSS
Exploits0References3
Citrix
Citrix
added 2016/10/07 12:0 a.m.8 views

High Availability Failovers Due to Missed HA HeartBeats of NetScaler VPX on VMware ESX Hypervisor

NetScaler VPX on VMWare hypervisor High Availability failsover due to missed HA heartbeats. Note : This article only pertains to NetScaler VPX on VMWare hypervisor. Background Root cause of the HA failovers is missing heartbeats due to VPX scheduling issues on the VMware host. The NetScaler’s...

7.3AI score
Exploits0
Rows per page
Query Builder