CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2183 matches found

Microsoft CVE•added 2023/11/02 7:0 a.m.•5 views

In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3 the wrapper scripts do not properly parse command lines.

...

5.5CVSS7AI score0.00367EPSS

Exploits2

Microsoft CVE•added 2023/11/01 7:0 a.m.•6 views

open-vm-tools contains a file descriptor hijack vulnerability in the vmware-user-suid-wrapper. A malicious actor with non-root privileges may be able to hijack the /dev/uinput file descriptor allowing them to simulate user inputs.

...

7.4CVSS7AI score0.00402EPSS

Exploits0

Tenable Nessus•added 2023/11/01 12:0 a.m.•17 views

FreeBSD : open-vm-tools -- Multiple vulnerabilities (d2505ec7-78ea-11ee-9131-6f01853956d5)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the d2505ec7-78ea-11ee-9131-6f01853956d5 advisory. - VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that ha...

7.5CVSS6.4AI score0.00667EPSS

Exploits0References5

Tenable Nessus•added 2023/11/01 12:0 a.m.•35 views

Debian DSA-5543-1 : open-vm-tools - security update

The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5543 advisory. Two security issues have been discovered in the Open VMware Tools, which could result in privilege escalation. For the oldstable distribution bullseye, these...

7.5CVSS6.5AI score0.00667EPSS

Exploits0References8

Veracode•added 2023/10/29 1:25 p.m.•163 views

Privilege Escalation

open-vm-tools is vulnerable to Privilege Escalation. The vulnerability is a file descriptor hijack within the vmware-user-suid-wrapper allowing a malicious attacker to simulate user inputs...

7.4CVSS7AI score0.00402EPSS

Exploits0References12Affected Software1

Tenable Nessus•added 2023/10/28 12:0 a.m.•30 views

SUSE SLES15 Security Update : open-vm-tools (SUSE-SU-2023:4230-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4230-1 advisory. - VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that has been granted Guest Operation...

7.5CVSS6.5AI score0.00667EPSS

Exploits0References7

NVD•added 2023/10/27 5:15 a.m.•27 views

CVE-2023-34059

7.4CVSS7.4AI score0.00402EPSS

Exploits0References11

OSV•added 2023/10/27 5:15 a.m.•20 views

CVE-2023-34059

7CVSS6.9AI score

Exploits0References11

OSV•added 2023/10/27 5:15 a.m.•6 views

AZL-31733 CVE-2023-34059 affecting package open-vm-tools for versions less than 11.3.0-3

7CVSS6.1AI score0.00402EPSS

Exploits0References1

OSV•added 2023/10/27 5:15 a.m.•2 views

DEBIAN-CVE-2023-34059

7CVSS6.2AI score0.00402EPSS

Exploits0References1

Prion•added 2023/10/27 5:15 a.m.•29 views

Design/Logic Flaw

3.5CVSS6.8AI score0.00402EPSS

Exploits0References10Affected Software2

SUSE CVE•added 2023/10/27 12:56 a.m.•1 views

SUSE CVE-2023-46316

In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines...

5.5CVSS8.8AI score0.00367EPSS

Exploits2References9

RedhatCVE•added 2023/10/26 6:28 p.m.•45 views

CVE-2023-46316

A vulnerability was found in traceroute. This security issue is caused by wrapper scripts that do not properly parse command lines. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of...

5.5CVSS6.5AI score0.00367EPSS

Exploits2References4