Lucene search
+L

500 matches found

CNNVD
CNNVD
added 2023/06/13 12:0 a.m.10 views

VMware Tools 授权问题漏洞

VMware Tools is an enhancement tool that comes with VMware's VMWare virtual machines, and is a driver provided by VMware to enhance the performance of virtual graphics cards and hard disks, as well as to synchronize the clocks of virtual machines with the host computer. A security vulnerability...

3.9CVSS6AI score0.13638EPSS
Exploits0References14
Positive Technologies
Positive Technologies
added 2023/06/13 12:0 a.m.8 views

PT-2023-3080 · Vmware +10 · Vmware Tools +13

Name of the Vulnerable Software and Affected Versions: VMware Tools versions prior to 12.2.5 VMware vCenter affected versions not specified Description: A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integri...

7.5CVSS6.8AI score0.13638EPSS
Exploits1References139
VulnCheck KEV
VulnCheck KEV
added 2023/06/13 12:0 a.m.3 views

VulnCheck KEV: CVE-2023-20867

VMware Tools contains an authentication bypass vulnerability in the vgauth module. A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine. An attacker must have root access...

3.9CVSS6.3AI score0.13638EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2023/06/13 12:0 a.m.209 views

CVE-2023-20867

A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine...

3.9CVSS6.5AI score0.13638EPSS
Exploits0References4
OSV
OSV
added 2023/06/13 12:0 a.m.3 views

UBUNTU-CVE-2023-20867

A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine...

3.9CVSS7.1AI score0.13638EPSS
Exploits0References5
VMware
VMware
added 2023/06/11 12:0 a.m.99 views

VMSA-2023-0013:VMware Tools update addresses Authentication Bypass vulnerability

Advisory ID: VMSA-2023-0013 CVSSv3 Range: 3.9 Issue Date:2023-06-13 Updated On: 2023-06-13 Initial Advisory CVEs: CVE-2023-20867 Synopsis: VMware Tools update addresses Authentication Bypass vulnerability CVE-2023-20867 RSS Feed Download PDF Download Text File Share this page on social media: 1...

3.9CVSS5.1AI score0.13638EPSS
Exploits0References17Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/06/07 2:15 p.m.5 views

CVE-2022-31693

VMware Tools for Windows 12.x.y prior to 12.1.5, 11.x.y and 10.x.y contains a denial-of-service vulnerability in the VM3DMP driver. A malicious actor with local user privileges in the Windows guest OS, where VMware Tools is installed, can trigger a PANIC in the VM3DMP driver leading to a...

5.5CVSS5.4AI score0.00233EPSS
Exploits0References4
OSV
OSV
added 2023/06/07 2:15 p.m.6 views

CVE-2022-31693

VMware Tools for Windows 12.x.y prior to 12.1.5, 11.x.y and 10.x.y contains a denial-of-service vulnerability in the VM3DMP driver. A malicious actor with local user privileges in the Windows guest OS, where VMware Tools is installed, can trigger a PANIC in the VM3DMP driver leading to a...

5.5CVSS5.8AI score0.00233EPSS
Exploits0References3
NVD
NVD
added 2023/06/07 2:15 p.m.48 views

CVE-2022-31693

VMware Tools for Windows 12.x.y prior to 12.1.5, 11.x.y and 10.x.y contains a denial-of-service vulnerability in the VM3DMP driver. A malicious actor with local user privileges in the Windows guest OS, where VMware Tools is installed, can trigger a PANIC in the VM3DMP driver leading to a...

5.5CVSS5.6AI score0.00233EPSS
Exploits0References3
Prion
Prion
added 2023/06/07 2:15 p.m.29 views

Denial of service

VMware Tools for Windows 12.x.y prior to 12.1.5, 11.x.y and 10.x.y contains a denial-of-service vulnerability in the VM3DMP driver. A malicious actor with local user privileges in the Windows guest OS, where VMware Tools is installed, can trigger a PANIC in the VM3DMP driver leading to a...

1.7CVSS5.8AI score0.00233EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/06/07 12:0 a.m.47 views

CVE-2022-31693

VMware Tools for Windows 12.x.y prior to 12.1.5, 11.x.y and 10.x.y contains a denial-of-service vulnerability in the VM3DMP driver. A malicious actor with local user privileges in the Windows guest OS, where VMware Tools is installed, can trigger a PANIC in the VM3DMP driver leading to a...

5.8AI score0.00233EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/06/07 12:0 a.m.14 views

CVE-2022-31693

VMware Tools for Windows 12.x.y prior to 12.1.5, 11.x.y and 10.x.y contains a denial-of-service vulnerability in the VM3DMP driver. A malicious actor with local user privileges in the Windows guest OS, where VMware Tools is installed, can trigger a PANIC in the VM3DMP driver leading to a...

6.6AI score0.00233EPSS
Exploits0References3
CVE
CVE
added 2023/06/07 12:0 a.m.926 views

CVE-2022-31693

CVE-2022-31693 affects VMware Tools for Windows (versions 12.x.y before 12.1.5, 11.x.y, and 10.x.y). A local attacker with user privileges in the Windows guest can trigger a PANIC in the VM3DMP driver, causing a denial-of-service condition in the Windows guest OS. The vulnerability is due to the ...

5.5CVSS5.7AI score0.00233EPSS
Exploits0References3Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:45 p.m.41 views

K84583382: VMware Tools vulnerability CVE-2015-5191

Security Advisory Description VMware Tools prior to 10.0.9 contains multiple file system races in libDeployPkg, related to the use of hard-coded paths under /tmp. Successful exploitation of this issue may result in a local privilege escalation. CVE-2015-5191 Impact This vulnerability may allow a...

6.7CVSS7AI score0.00331EPSS
Exploits0Affected Software14
F5 Networks
F5 Networks
added 2023/02/21 6:48 p.m.57 views

K87046687: VMware Tools vulnerability CVE-2022-31676

Security Advisory Description VMware Tools 12.0.0, 11.x.y and 10.x.y contains a local privilege escalation vulnerability. A malicious actor with local non-administrative access to the Guest OS can escalate privileges as a root user in the virtual machine. CVE-2022-31676 Impact A local,...

7.8CVSS7.1AI score0.0054EPSS
Exploits0Affected Software14
SUSE CVE
SUSE CVE
added 2023/02/15 5:58 a.m.2 views

SUSE CVE-2010-2189

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, when used in conjunction with VMWare Tools on a VMWare platform, allows attackers to cause a denial of service memory corruption or possibly execute arbitrary code via unspecified vectors...

9.3CVSS7.7AI score0.05957EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:16 a.m.5 views

SUSE CVE-2015-5191

VMware Tools prior to 10.0.9 contains multiple file system races in libDeployPkg, related to the use of hard-coded paths under /tmp. Successful exploitation of this issue may result in a local privilege escalation. CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H...

6.7CVSS6.8AI score0.00331EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:30 a.m.7 views

SUSE CVE-2018-6969

VMware Tools 10.x and prior before 10.3.0 contains an out-of-bounds read vulnerability in HGFS. Successful exploitation of this issue may lead to information disclosure or may allow attackers to escalate their privileges on the guest VMs. In order to be able to exploit this issue, file sharing mu...

7CVSS6.5AI score0.00395EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:25 a.m.2 views

SUSE CVE-2022-31676

VMware Tools 12.0.0, 11.x.y and 10.x.y contains a local privilege escalation vulnerability. A malicious actor with local non-administrative access to the Guest OS can escalate privileges as a root user in the virtual machine...

7CVSS7.2AI score0.0054EPSS
Exploits0References16
BDU FSTEC
BDU FSTEC
added 2023/01/16 12:0 a.m.7 views

The vulnerability of the VM3DMP driver for the VMware Tools utility on Windows operating systems allows a hacker to trigger a service failure.

The vulnerability of the VM3DMP driver for the VMware Tools utility on Windows operating systems is related to insufficient testing of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

3.3CVSS6.2AI score0.00233EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder