Security Bulletin: Multiple Vulnerabilities in VMware ESXi affect IBM Cloud Pak System

Summary Vulnerabilities in VMware ESXi affect IBM Cloud Pak System. IBM Cloud Pak System has addressed vulnerabilities. Cloud Pak Sytem has delivered updated workload nodes to VMware ESXi 83U3g. Vulnerability Details CVEID:CVE-2025-41236 DESCRIPTION: VMware ESXi, Workstation, and Fusion contain a...

EUVD-2020-25236

Malware in sbrugna...

EUVD-2019-15099

Malware in sbrugna...

EUVD-2018-18726

Malware in sbrugna...

EUVD-2019-15116

Malware in sbrugna...

EUVD-2018-18725

Malicious code in bioql PyPI...

The vulnerability in the virtual network adapter VMXNET3 of VMware ESXi, Workstation, Fusion, and Cloud Foundation exists due to a write-off outside the buffer, allowing an attacker to execute arbitrary code.

The vulnerability in the virtual network adapter VMXNET3 of VMware ESXi, Workstation, Fusion, and Cloud Foundation software lies in buffer overflow attacks. Exploiting this vulnerability allows an attacker to execute arbitrary code...

CVE-2020-3971

VMware ESXi 6.7 before ESXi670-201904101-SG and 6.5 before ESXi650-201907101-SG, Workstation 15.x before 15.0.2, and Fusion 11.x before 11.0.2 contain a heap overflow vulnerability in the vmxnet3 virtual network adapter. A malicious actor with local access to a virtual machine with a vmxnet3...

The vulnerability of the e1000e virtual network adapter allows attackers to execute arbitrary code or cause system failures in VMware Workstation and VMware Fusion hypervisors.

The vulnerability of the e1000e virtual network adapter in VMware Workstation and VMware Fusion lies in the fact that data is written beyond the buffer boundaries. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause service failures remotely...

CVE-2019-5541

VMware Workstation 15.x before 15.5.1 and Fusion 11.x before 11.5.1 contain an out-of-bounds write vulnerability in the e1000e virtual network adapter. Successful exploitation of this issue may lead to code execution on the host from the guest or may allow attackers to create a denial-of-service...

Out-of-bounds

VMware Workstation 15.x before 15.5.1 and Fusion 11.x before 11.5.1 contain an out-of-bounds write vulnerability in the e1000e virtual network adapter. Successful exploitation of this issue may lead to code execution on the host from the guest or may allow attackers to create a denial-of-service...

CVE-2019-5541

VMware Workstation 15.x before 15.5.1 and Fusion 11.x before 11.5.1 contain an out-of-bounds write vulnerability in the e1000e virtual network adapter. Successful exploitation of this issue may lead to code execution on the host from the guest or may allow attackers to create a denial-of-service...

KLA12121 Multiple vulnerabilities in VMware Workstation and Player

Multiple vulnerabilities were found in VMware Workstation and Player. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in the RPC handler can be exploited t...

CVE-2019-5524

VMware Workstation 14.x before 14.1.6 and Fusion 10.x before 10.1.6 contain an out-of-bounds write vulnerability in the e1000 virtual network adapter. This issue may allow a guest to execute code on the host...

Out-of-bounds

VMware Workstation 14.x before 14.1.6 and Fusion 10.x before 10.1.6 contain an out-of-bounds write vulnerability in the e1000 virtual network adapter. This issue may allow a guest to execute code on the host...

CVE-2019-5524

VMware Workstation 14.x before 14.1.6 and Fusion 10.x before 10.1.6 contain an out-of-bounds write vulnerability in the e1000 virtual network adapter. This issue may allow a guest to execute code on the host...

VMware Workstation 14.x < 14.1.7 / 15.x < 15.0.4 Multiple Vulnerabilities (VMSA-2019-0005)

The version of VMware Workstation installed on the remote host is 14.x prior to 14.1.4 or 15.x prior to 15.0.1. It is, therefore, affected by multiple vulnerabilities, including: - An out-of-bounds read/write vulnerability and a Time-of-check Time-of-use TOCTOU vulnerability in the virtual USB 1....

CVE-2018-6982

CVE-2018-6982 affects VMware ESXi 6.5 and 6.7 (and related VMware products) due to uninitialized stack memory usage in the vmxnet3 virtual network adapter, which may leak information from host to guest when vmxnet3 is enabled. The Connected documents corroborate that ESXi 6.7 requires ESXi670-201...

VMware ESXi, Workstation and Fusion Uninitialized Stack Memory Usage Vulnerability

VMware ESXi, Workstation, and Fusion are all products of VMware, Inc. VMware ESXi is a server virtualization platform that can be installed directly on physical servers; VMware Workstation is a suite of virtual machine software; and Fusion is a suite of virtual machine software that is designed t...

Unspecified Vulnerability in Oracle Sun Solaris (CNVD-2015-06809)

Oracle Sun Solaris is a set of Unix-like operating systems from Oracle. An unspecified vulnerability exists in Oracle Sun Solaris 11.2. Allows a local user to affect the confidentiality, integrity, and availability of the virtual NIC driver by vectoring the kernel band associated with the...