CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

481 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•8 views

Astra Linux - уязвимость в open-vm-tools

VMware Tools 12.0.0, 11.x.y, and 10.x.y contains a local privilege escalation vulnerability. A malicious actor with local non-administrative access to the guest OS can escalate privileges as a root user in the virtual machine...

7.8CVSS7.1AI score0.00067EPSS

Exploits0References2

Broadcom•added 2026/03/03 12:0 a.m.•14 views

VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability

VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. A malicious local actor with non-administrative privileges having access to a VM with VMware Tools installed and managed by Aria Operations with SDMP enabled may exploit this vulnerability to escalate...

7.8CVSS6AI score0.00529EPSS

Exploits3

Fedora•added 2026/02/11 12:59 a.m.•9 views

[SECURITY] Fedora 42 Update: open-vm-tools-13.0.10-2.fc42

The open-vm-tools project is an open source implementation of VMware Tools. It is a suite of open source virtualization utilities and drivers to improve the functionality, user experience and administration of VMware virtual machines. This package contains only the core user-space programs and...

7.8CVSS5.5AI score0.00529EPSS

Exploits3

Fedora•added 2026/02/07 12:59 a.m.•7 views

[SECURITY] Fedora 43 Update: open-vm-tools-13.0.10-2.fc43

7.8CVSS7.8AI score0.00529EPSS

Exploits3

Tenable Nessus•added 2026/02/02 12:0 a.m.•7 views

Alibaba Cloud Linux 3 : 0019: open-vm-tools (ALINUX3-SA-2026:0019)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2026:0019 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-22247: VMware Tools contains an insecure...

6.1CVSS5.5AI score0.00326EPSS

Exploits0References2

Tenable Nessus•added 2026/01/19 12:0 a.m.•2 views

MiracleLinux 9 : open-vm-tools-12.3.5-2.el9 (AXBA:2024-8096:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXBA:2024-8096:03 advisory. - VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that has been granted Guest Operation Privileges...

7.5CVSS6.1AI score0.00078EPSS

Exploits0References3

RedhatCVE•added 2026/01/09 10:46 a.m.•3 views

CVE-2022-31693

VMware Tools for Windows 12.x.y prior to 12.1.5, 11.x.y and 10.x.y contains a denial-of-service vulnerability in the VM3DMP driver. A malicious actor with local user privileges in the Windows guest OS, where VMware Tools is installed, can trigger a PANIC in the VM3DMP driver leading to a...

5.5CVSS6.6AI score0.00058EPSS

Exploits0References1

Tenable Nessus•added 2025/11/20 12:0 a.m.•3 views

TencentOS Server 4: open-vm-tools (TSSA-2025:0401)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0401 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

6.1CVSS6.5AI score0.00326EPSS

Exploits0References2

The Hacker News•added 2025/10/31 7:9 a.m.•12 views

CISA Flags VMware Zero-Day Exploited by China-Linked Hackers in Active Attacks

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Thursday added a high-severity security flaw impacting Broadcom VMware Tools and VMware Aria Operations to its Known Exploited Vulnerabilities KEV catalog, following reports of active exploitation in the wild. The vulnerability in...

7.8CVSS8.5AI score0.00529EPSS

Exploits3

CISA KEV Catalog•added 2025/10/30 12:0 a.m.•13 views

Broadcom VMware Aria Operations and VMware Tools Privilege Defined with Unsafe Actions Vulnerability

Broadcom VMware Aria Operations and VMware Tools contain a privilege defined with unsafe actions vulnerability. A malicious local actor with non-administrative privileges having access to a VM with VMware Tools installed and managed by Aria Operations with SDMP enabled may exploit this...

7.8CVSS6.9AI score0.00529EPSS

In wildExploits3

Tenable Nessus•added 2025/10/22 12:0 a.m.•4 views

TencentOS Server 4: open-vm-tools (TSSA-2025:0776)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0776 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

7.8CVSS7.9AI score0.00529EPSS

Exploits3References2

Tenable Nessus•added 2025/10/16 12:0 a.m.•6 views

Alibaba Cloud Linux 3 : 0159: open-vm-tools (ALINUX3-SA-2025:0159)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2025:0159 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-41244: VMware Aria Operations and VMware...

7.8CVSS7.9AI score0.00529EPSS

Exploits3References2

Tenable Nessus•added 2025/10/15 12:0 a.m.•6 views

Amazon Linux 2023 : open-vm-tools, open-vm-tools-desktop, open-vm-tools-devel (ALAS2023-2025-1226)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1226 advisory. VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. A malicious local actor with non-administrative privileges having access to a VM with VMware Tools installed...

7.8CVSS7.9AI score0.00529EPSS

Exploits3References4