Lucene search
K

114 matches found

Tenable Nessus
Tenable Nessus
added 2016/09/30 12:0 a.m.13 views

VMware vSphere Client Detection

Binary data 9591.prm...

7.3AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2015/10/23 12:0 a.m.8 views

PT-2016-30: XML External Entity Injection in vSphere Client

The specialists of the Positive Research center have detected an XML External Entity Injection in vSphere Client. Vulnerability in the vSphere Client allows attackers to obtain sensitive information by tricking a user to connect to a malicious vCenter Server or ESXi. How to fix Update your softwa...

5.8CVSS6.2AI score0.01227EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2015/01/27 12:0 a.m.65 views

KLA10452 Multiple vulnerabilities in VMware products

Multiple serious vulnerabilities have been found in VMware products. Malicious users can exploit these vulnerabilities to gain privileges or cause denial of service. Below is a complete list of vulnerabilities 1. Vectors related to file write can be exploited locally; 2. Improper input validation...

7.1CVSS8.7AI score0.99999EPSS
Exploits8References8
Veeam
Veeam
added 2014/08/07 12:0 a.m.19 views

Storage vMotion of Instant Recovery fails with “The method is disabled by ‘’”

Challenge When attempting to migrate an Instant Recovery VM to a production datastore using VMware Storage vMotion, the following error occurs: The method is disabled by 'vm-' Call 'VirtualMachine.Relocate' for object 'vmname' on vCenter Server 'vCenterName' failed. Solution To correct this issue...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/07/03 12:0 a.m.57 views

VMware vSphere Client Multiple Vulnerabilities (VMSA-2014-0006)

The version of vSphere Client installed on the remote Windows host is is affected by the following vulnerabilities in the OpenSSL library : - An error exists in the function 'ssl3readbytes' that could allow data to be injected into other sessions or allow denial of service attacks. Note this issu...

7.4CVSS7.4AI score0.95326EPSS
Exploits9References6
OpenVAS
OpenVAS
added 2014/04/24 12:0 a.m.29 views

VMSA-2014-0003 VMware vSphere Client updates address security vulnerabilities

VMware vSphere Client updates address security vulnerabilities OpenVAS Vulnerability Test $Id: gbVMSA-2014-0003.nasl 6663 2017-07-11 09:58:05Z teissa $ VMSA-2014-0003: VMware vSphere Client updates address security vulnerabilities Authors: Michael Meyer Copyright: Copyright c 2014 Greenbone...

9.3CVSS0.6AI score0.03773EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2014/04/24 12:0 a.m.21 views

VMware ESXi/ESX vSphere Client updates address security vulnerabilities (VMSA-2014-0003)

VMware vSphere Client updates address security vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS5.1AI score0.03773EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2014/04/17 12:0 a.m.40 views

VMware vSphere Client Multiple Vulnerabilities (VMSA-2014-0003)

The version of vSphere Client installed on the remote Windows host is affected by the following vulnerabilities : - An error exists related to the vSphere Client that could allow an updated vSphere Client to be downloaded from an untrusted source. CVE-2014-1209 - An error exists related to the...

9.3CVSS5.5AI score0.03773EPSS
Exploits1References3
seebug.org
seebug.org
added 2014/04/15 12:0 a.m.68 views

vSphere Client任意文件下载漏洞

Bugtraq ID:66772 CVE ID:CVE-2014-1209 VMware vCenter是VMware vSphere套件中一个强大的主机和虚拟机集中管理组件。 VMware vSphere Client 4.0, 4.1, 5.0 Update 3之前版本, 5.1 Update 2之前版本没有正确验证Client文件的更新,这可使远程攻击者触发任意程序的下载和执行。 0 VMWare vSphere Client 5.x VMWare vSphere Client 4.x 目前厂商已经发布了升级补丁以修复漏洞,请下载使用:...

9.3CVSS6.5AI score0.03773EPSS
Exploits1
Prion
Prion
added 2014/04/11 7:55 p.m.22 views

Design/Logic Flaw

VMware vSphere Client 5.0 before Update 3 and 5.1 before Update 2 does not properly validate X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate...

5.8CVSS6.6AI score0.00679EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2014/04/11 7:55 p.m.20 views

Design/Logic Flaw

VMware vSphere Client 4.0, 4.1, 5.0 before Update 3, and 5.1 before Update 2 does not properly validate updates to Client files, which allows remote attackers to trigger the downloading and execution of an arbitrary program via unspecified vectors...

9.3CVSS7.4AI score0.03773EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2014/04/11 7:0 p.m.30 views

CVE-2014-1209

VMware vSphere Client 4.0, 4.1, 5.0 before Update 3, and 5.1 before Update 2 does not properly validate updates to Client files, which allows remote attackers to trigger the downloading and execution of an arbitrary program via unspecified vectors...

6.8AI score0.03773EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2014/04/11 12:0 a.m.47 views

VMSA-2014-0003 : VMware vSphere Client updates address security vulnerabilities

a. vSphere Client Insecure Client Download vSphere Client contains a vulnerability in accepting an updated vSphere Client file from an untrusted source. The vulnerability may allow a host to direct vSphere Client to download and execute an arbitrary file from any URI. This issue can be exploited ...

9.3CVSS5.6AI score0.03773EPSS
Exploits1References3
Kaspersky
Kaspersky
added 2014/04/10 12:0 a.m.55 views

KLA10436 Multiple vulnerabilities in VMware vSphere Client

Multiple critical vulnerabilities have been found in VMware vSphere. Malicious users can exploit these vulnerabilities to execute arbitrary code or bypass security. Below is a complete list of vulnerabilities 1. An improper client file update validation can be exploited remotely; 2. An improper...

9.3CVSS8.1AI score0.03773EPSS
Exploits1References3
VMware
VMware
added 2014/04/08 12:0 a.m.89 views

VMSA-2014-0003:VMware vSphere Client updates address security vulnerabilities

VMSA-2014-0003 VMware vSphere Client updates address security vulnerabilities VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2014-0003 VMware Security Advisory Synopsis: VMware vSphere Client updates address security vulnerabilities VMware Security Advisory Issue date:...

9.3CVSS6.3AI score0.03773EPSS
Exploits1References3Affected Software1
Veeam
Veeam
added 2014/01/23 12:0 a.m.79 views

How to reinstall vSphere Web Client plug-in for Veeam Backup & Replication

Article Applicability This article is regarding the Local vSphere Client Plug-in only. Veeam Backup Enterprise Manager offers the following configurations of the vSphere Client plug-in: Local vSphere Client Plug-in -- For vSphere Client 7.0.0.x or earlier, the plug-in is installed locally on the...

6.5AI score
Exploits0Affected Software1
Prion
Prion
added 2013/02/15 12:9 p.m.21 views

Memory corruption

VMware vCenter Server 4.0 before Update 4b and 4.1 before Update 3a, VMware VirtualCenter 2.5, VMware vSphere Client 4.0 before Update 4b and 4.1 before Update 3a, VMware VI-Client 2.5, VMware ESXi 3.5 through 4.1, and VMware ESX 3.5 through 4.1 do not properly implement the management...

10CVSS8.5AI score0.02803EPSS
Exploits2References1Affected Software6
CVE
CVE
added 2013/02/15 11:0 a.m.80 views

CVE-2013-1405

CVE-2013-1405 affects multiple VMware products (vCenter Server, VirtualCenter, vSphere Client, VI-Client, ESXi/ESX 3.5–4.1). A flaw in the management authentication protocol allows remote servers to trigger code execution or memory corruption via unspecified vectors. VMware’s VMSA-2013-0001 descr...

10CVSS8AI score0.02803EPSS
Exploits2References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/02/11 12:0 a.m.47 views

VMware vSphere Client Memory Corruption (VMSA-2013-0001)

The version of vSphere Client installed on the remote Windows host is potentially affected by a memory corruption issue in the authentication mechanism. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid64559; scriptversion"1.8"; scriptcvsdate"Date: 2019/12/04";...

10CVSS5.5AI score0.02803EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2013/02/11 12:0 a.m.11 views

VMware vSphere Client Installed

VMware vSphere Client, a client application for connecting to VMware vSphere Server, is installed on the remote Windows host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid64558; scriptversion"1.9"; scriptsetattributeattribute:"pluginmodificationdate",...

5.5AI score
Exploits0References1
Rows per page
Query Builder