VMSA-2010-0016:VMware ESXi and ESX third party updates for Service Console and Likewise components

VMSA-2010-0016.1 VMware ESXi and ESX third party updates for Service Console and Likewise components VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2010-0016.1 VMware Security Advisory Synopsis: VMware ESXi and ESX third party updates for Service Console and Likewise componen...

VMSA-2021-0030:VMware Workspace ONE Access, Identity Manager and vRealize Automation updates address multiple vulnerabilities

Advisory ID: VMSA-2021-0030 CVSSv3 Range: 5.5-6.6 Issue Date:2021-12-17 Updated On: 2021-12-17 Initial Advisory CVEs: CVE-2021-22056, CVE-2021-22057 Synopsis: VMware Workspace ONE Access, Identity Manager and vRealize Automation updates address multiple vulnerabilities CVE-2021-22056,...

VMSA-2019-0022:VMware ESXi and Horizon DaaS updates address OpenSLP remote code execution vulnerability

VMware Security Advisories Advisory ID| VMSA-2019-0022.1 ---|--- Advisory Severity| Critical CVSSv3 Range| 9.8 Synopsis| VMware ESXi and Horizon DaaS updates address OpenSLP remote code execution vulnerability CVE-2019-5544 Issue Date| 2019-12-05 Updated On| 2020-05-08 CVEs| CVE-2019-5544 1...

VMSA-2016-0005:VMware product updates address CRITICAL and HIGH security issues

VMSA-2016-0005.5 VMware product updates address critical and important security issues VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2016-0005.5 VMware Security Advisory Synopsis: VMware product updates address critical and important security issues. VMware Security Advisory...

VMSA-2010-0009:ESXi utilities and ESX Service Console third party updates

VMSA-2010-0009.2 ESXi utilities and ESX Service Console third party updates VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2010-0009.2 VMware Security Advisory Synopsis: ESXi utilities and ESX Service Console third party updates VMware Security Advisory Issue date: 2010-05-27...

VMSA-2013-0003:VMware vCenter Server, ESXi and ESX address an NFC Protocol memory corruption and third party library security issues.

VMSA-2013-0003 VMware vCenter Server, ESXi and ESX address an NFC Protocol memory corruption and third party library security issues. VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2013-0003 VMware Security Advisory Synopsis: VMware vCenter Server, ESXi and ESX address an NFC...

VMSA-2009-0016:VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components

VMSA-2009-0016.6 VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components. VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2009-0016.6 VMware Security Advisory Synopsis: VMware vCenter and ESX update release and vMA...

VMware Hosted products and patches for ESX and ESXi resolve a critical security issue and update bzip2

a. Critical Memory corruption vulnerabilityA memory corruption condition may occur in the virtual machinehardware. A malicious request sent from the guest operatingsystem to the virtual hardware may cause the virtual hardware towrite to uncontrolled physical memory.VMware would like to thank Andr...

VMSA-2013-0009:VMware vSphere, ESX and ESXi updates to third party libraries

VMSA-2013-0009.3 VMware vSphere, ESX and ESXi updates to third party libraries VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2013-0009.3 VMware Security Advisory Synopsis: VMware vSphere, ESX and ESXi updates to third party libraries VMware Security Advisory Issue date:...

VMSA-2009-0007:VMware Hosted products and ESX and ESXi patches resolve security issues

VMSA-2009-0007 VMware Hosted products and ESX and ESXi patches resolve security issues VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2009-0007 VMware Security Advisory Synopsis: VMware Hosted products and ESX and ESXi patches resolve security issues VMware Security Advisory...

VMSA-2025-0010 : VMware ESXi, vCenter Server, Workstation, and Fusion updates address multiple vulnerabilities (CVE-2025-41225, CVE-2025-41226, CVE-2025-41227, CVE-2025-41228)

Advisory ID: | VMSA-2025-0010 ---|--- Advisory Severity: | Important CVSSv3 Range: | 4.3-8.8 Synopsis: | VMware ESXi, vCenter Server, Workstation, and Fusion updates address multiple vulnerabilities CVE-2025-41225, CVE-2025-41226, CVE-2025-41227, CVE-2025-41228 Issue date: | 2025-05-20 Updated on...

VMSA-2021-0027:VMware vCenter Server updates address arbitrary file read and SSRF vulnerabilities

Advisory ID: VMSA-2021-0027.1 CVSSv3 Range: 6.5-7.5 Issue Date:2021-11-23 Updated On: 2022-02-15 CVEs: CVE-2021-21980, CVE-2021-22049 Synopsis: VMware vCenter Server updates address arbitrary file read and SSRF vulnerabilities CVE-2021-21980, CVE-2021-22049 RSS Feed Download PDF Download Text Fil...

VMSA-2016-0019:VMware Workstation and Fusion updates address CRITICAL out-of-bounds memory access vulnerability

VMSA-2016-0019 VMware Workstation and Fusion updates address critical out-of-bounds memory access vulnerability VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2016-0019 VMware Security Advisory Severity: Critical VMware Security Advisory Synopsis: VMware Workstation and Fusio...

VMSA-2015-0003:VMware product updates address CRITICAL information disclosure issue in JRE.

VMSA-2015-0003.14 VMware product updates address critical information disclosure issue in JRE VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2015-0003.14 VMware Security Advisory Synopsis: VMware product updates address critical information disclosure issue in JRE VMware...

VMware Response to Apache Log4j Remote Code Execution Vulnerabilities (CVE-2021-44228, CVE-2021-45046)

1. Impacted Products VMware Horizon VMware vCenter Server VMware HCX VMware NSX-T Data Center VMware Unified Access Gateway VMware WorkspaceOne Access VMware Identity Manager VMware vRealize Operations VMware vRealize Operations Cloud Cloud Proxy VMware vRealize Automation VMware vRealize...

VMSA-2009-0006:VMware Hosted products and patches for ESX and ESXi resolve a CRITICAL security vulnerability

VMSA-2009-0006 VMware Hosted products and patches for ESX and ESXi resolve a critical security vulnerability VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2009-0006 VMware Security Advisory Synopsis: VMware Hosted products and patches for ESX and ESXi resolve a critical...

VMware ESXi, Workstation, Fusion and NSX-T updates address multiple security vulnerabilities (CVE-2020-3981, CVE-2020-3982, CVE-2020-3992, CVE-2020-3993, CVE-2020-3994, CVE-2020-3995)

3a. ESXi OpenSLP remote code execution vulnerability CVE-2020-3992 OpenSLP as used in ESXi has a use-after-free issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8. 3b. NSX-T MITM vulnerability CVE-2020-3993 VMware...

VMSA-2012-0013:VMware vSphere and vCOps updates to third party libraries

VMSA-2012-0013.2 VMware vSphere and vCOps updates to third party libraries VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2012-0013.2 VMware Security Advisory Synopsis: VMware vSphere and vCOps updates to third party libraries VMware Security Advisory Issue date: 2012-08-30...

VMSA-2010-0014:VMware Workstation, Player, and ACE address several security issues.

VMSA-2010-0014.1 VMware Workstation, Player, and ACE address several security issues. VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2010-0014.1 VMware Security Advisory Synopsis: VMware Workstation, Player, and ACE address several security issues. VMware Security Advisory...

VMSA-2021-0010:VMware vCenter Server updates address remote code execution and authentication vulnerabilities

Advisory ID: VMSA-2021-0010 CVSSv3 Range: 6.5-9.8 Issue Date:2021-05-25 Updated On: 2021-05-25 Initial Advisory CVEs: CVE-2021-21985, CVE-2021-21986 Synopsis: VMware vCenter Server updates address remote code execution and authentication vulnerabilities CVE-2021-21985, CVE-2021-21986 RSS Feed...

VMware Horizon Server updates address multiple security vulnerabilities (CVE-2023-34037, CVE-2023-34038)

3a. Request smuggling vulnerability CVE-2023-34037 VMware Horizon Server contains a HTTP request smuggling vulnerability. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 5.3. 3b. Information disclosure vulnerability...

VMSA-2014-0012:VMware vSphere product updates address security vulnerabilities

VMSA-2014-0012.1 VMware vSphere product updates address security vulnerabilities VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2014-0012.1 VMware Security Advisory Synopsis: VMware vSphere product updates address security vulnerabilities VMware Security Advisory Issue date:...

VMware ESXi, Workstation, and Fusion updates address multiple security vulnerabilities (CVE-2024-22252, CVE-2024-22253, CVE-2024-22254, CVE-2024-22255)

3a. Use-after-free vulnerability in XHCI USB controller CVE-2024-22252 VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the XHCI USB controller. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9...

VMSA-2023-0023:VMware vCenter Server updates address out-of-bounds write and information disclosure vulnerabilities

Advisory ID: VMSA-2023-0023.1 CVSSv3 Range: 4.3-9.8 Issue Date:2023-10-25 Updated On: 2024-01-17 CVEs: CVE-2023-34048, CVE-2023-34056 Synopsis: VMware vCenter Server updates address out-of-bounds write and information disclosure vulnerabilities CVE-2023-34048, CVE-2023-34056 RSS Feed Download PDF...

VMSA-2023-0001:VMware vRealize Log Insight latest updates address multiple security vulnerabilities

Advisory ID: VMSA-2023-0001.1 CVSSv3 Range: 5.3-9.8 Issue Date:2023-01-24 Updated On: 2023-01-31 CVEs: CVE-2022-31706, CVE-2022-31704, CVE-2022-31710, CVE-2022-31711 Synopsis: VMware vRealize Log Insight latest updates address multiple security vulnerabilities CVE-2022-31706, CVE-2022-31704,...

VMSA-2015-0007:VMware vCenter and ESXi updates address CRITICAL security issues.

VMSA-2015-0007.7 VMware vCenter and ESXi updates address critical security issues. VMware Security Advisory VMware Security AdvisoryAdvisory ID: VMSA-2015-0007.7 VMware Security AdvisorySynopsis: VMware vCenter and ESXi updates address critical security issues. VMware Security AdvisoryIssue date:...

VMSA-2016-0022:VMware product updates address information disclosure vulnerabilities

VMSA-2016-0022 VMware product updates address information disclosure vulnerabilities VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2016-0022 VMware Security Advisory Severity: Important VMware Security Advisory Synopsis: VMware product updates address information disclosure...

VMSA-2014-0008:VMware vSphere product updates to third party libraries

VMSA-2014-0008.2 VMware vSphere product updates to third party libraries VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2014-0008.2 VMware Security Advisory Synopsis: VMware vSphere product updates to third party libraries VMware Security Advisory Issue date: 2014-09-09 VMwar...

VMSA-2011-0012:VMware ESXi and ESX updates to third party libraries and ESX Service Console

VMSA-2011-0012.3 VMware ESX third party updates for Service Console packages glibc and dhcp VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2011-0012.3 VMware Security Advisory Synopsis: VMware ESX third party updates for Service Console packages glibc and dhcp VMware Security...

VMSA-2007-0006:Updated versions of all supported hosted products and all ESX 2x products and patches for ESX 30x address CRITICAL security updates. Service Console security updates for samba, bind, krb5, vixie-cron, shadow-utils, openldap, pam, gcc, and gdb packages.

VMSA-2007-0006 Updated versions of all supported hosted products and all ESX 2x products and patches for ESX 30x address critical security updates. Service Console security updates for samba, bind, krb5, vixie-cron, shadow-utils, openldap, pam, gcc, and gdb packages. VMware Security Advisory VMwa...

VMSA-2019-0008:VMware product updates enable Hypervisor-Specific Mitigations, Hypervisor-Assisted Guest Mitigations, and Operating System-Specific Mitigations for Microarchitectural Data Sampling (MDS) Vulnerabilities

VMware Security Advisories Advisory ID| VMSA-2019-0008.2 ---|--- Advisory Severity| Moderate CVSSv3 Range| 3.8 - 6.5 Synopsis| VMware product updates enable Hypervisor-Specific Mitigations, Hypervisor-Assisted Guest Mitigations, and Operating System-Specific Mitigations for Microarchitectural Dat...

VMSA-2011-0009:VMware hosted product updates, ESX patches and VI Client update resolve multiple security issue

VMSA-2011-0009.3 VMware hosted product updates, ESX patches and VI Client update resolve multiple security issues VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2011-0009.3 VMware Security Advisory Synopsis: VMware hosted product updates, ESX patches and VI Client update...

VMSA-2021-0016:VMware Workspace ONE Access, Identity Manager and vRealize Automation address multiple vulnerabilities

Advisory ID: VMSA-2021-0016.2 CVSSv3 Range: 3.7-8.6 Issue Date:2021-08-05 Updated On: 2021-11-12 CVEs: CVE-2021-22002, CVE-2021-22003 Synopsis: VMware Workspace ONE Access, Identity Manager and vRealize Automation address multiple vulnerabilities CVE-2021-22002, CVE-2021-22003 RSS Feed Download P...

VMSA-2012-0016:VMware security updates for vSphere API and ESX Service Console

VMSA-2012-0016 VMware security updates for vSphere API and ESX Service Console VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2012-0016 VMware Security Advisory Synopsis: VMware security updates for vSphere API and ESX Service Console VMware Security Advisory Issue date:...

VMSA-2019-0010:VMware product updates address Linux kernel vulnerabilities in TCP Selective Acknowledgement (SACK)

VMware Security Advisories Advisory ID| VMSA-2019-0010.3 ---|--- Advisory Severity| Important CVSSv3 Range| 5.3 - 7.5 Synopsis| VMware product updates address Linux kernel vulnerabilities in TCP Selective Acknowledgement SACK CVE-2019-11477, CVE-2019-11478 Issue Date| 2019-07-02 Updated On|...

VMSA-2009-0005:VMware Hosted products, VI Client and patches for ESX and ESXi resolve multiple security issues

VMSA-2009-0005 VMware Hosted products, VI Client and patches for ESX and ESXi resolve multiple security issues VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2009-0005 VMware Security Advisory Synopsis: VMware Hosted products, VI Client and patches for ESX and ESXi resolve...

VMSA-2008-0011:Updated ESX service console packages for Samba and vmnix

VMSA-2008-0011.3 Updated ESX service console packages for Samba and vmnix VMware Security Advisory VMware Security AdvisoryAdvisory ID: VMSA-2008-0011.3 VMware Security AdvisorySynopsis: Updated ESX service console packages for Samba and vmnix VMware Security AdvisoryIssue date: 2008-07-28 VMware...

VMSA-2012-0008:VMware ESX updates to ESX Service Console

VMSA-2012-0008.1 VMware ESX updates to ESX Service Console VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2012-0008.1 VMware Security Advisory Synopsis: VMware ESX updates to ESX Service Console VMware Security Advisory Issue date: 2012-04-26 VMware Security Advisory Updated...

VMSA-2023-0013:VMware Tools update addresses Authentication Bypass vulnerability

Advisory ID: VMSA-2023-0013 CVSSv3 Range: 3.9 Issue Date:2023-06-13 Updated On: 2023-06-13 Initial Advisory CVEs: CVE-2023-20867 Synopsis: VMware Tools update addresses Authentication Bypass vulnerability CVE-2023-20867 RSS Feed Download PDF Download Text File Share this page on social media: 1...

VMware hosted products, vCenter Server and ESX patches resolve multiple security issues

a. Windows-based VMware Tools Unsafe Library Loading vulnerability A vulnerability in the way VMware libraries are referenced allows for arbitrary code execution in the context of the logged on user. This vulnerability is present only on Windows Guest Operating Systems. In order for an attacker t...

VMSA-2016-0010:VMware product updates address multiple HIGH security issues

VMSA-2016-0010.1 VMware product updates address multiple important security issues VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2016-0010.1 VMware Security Advisory Severity: Important VMware Security Advisory Synopsis: VMware product updates address multiple security issue...

VMware product updates address local privilege escalation vulnerability in Linux kernel

VMware product updates address local privilege escalation vulnerability in Linux kernel...

VMware ESXi and vCenter Server updates address command injection and information disclosure vulnerabilities. (CVE-2017-16544, CVE-2019-5531, CVE-2019-5532, CVE-2019-5534)

3a. VMware ESXi 'busybox' command injection vulnerability- CVE-2017-16544 ESXi contains a command injection vulnerability due to the use of vulnerable version of busybox that does not sanitize filenames which may result into executing any escape sequence in the shell. VMware has evaluated the...

VMSA-2016-0021:VMware product updates address partial information disclosure vulnerability

VMSA-2016-0021 VMware product updates address partial information disclosure vulnerability VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2016-0021 VMware Security Advisory Severity: Moderate VMware Security Advisory Synopsis: VMware product updates address partial informatio...

VMSA-2010-0012:VMware vCenter Update Manager fix for Jetty Web server addresses HIGH security vulnerabilities

VMSA-2010-0012.2 VMware vCenter Update Manager fix for Jetty Web server addresses important security vulnerabilities VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2010-0012.2 VMware Security Advisory Synopsis: VMware vCenter Update Manager fix for Jetty Web server addresses...

VMSA-2010-0001:ESX Service Console and vMA updates for nss and nspr

VMSA-2010-0001.1 ESX Service Console and vMA updates for nss and nspr VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2010-0001.1 VMware Security Advisory Synopsis: ESX Service Console and vMA updates for nss and nspr VMware Security Advisory Issue date: 2010-03-03 VMware...

VMware ESXi, Workstation, Fusion, and Tools updates address multiple security issues

a. VMware Workstation heap-based buffer overflow vulnerabilities via Cortado ThinPrint VMware Workstation contains vulnerabilities that may allow a Windows-based Virtual Machine VM to trigger a heap-based buffer overflow. Exploitation of these issues may lead to arbitrary code execution in VMware...

VMware product updates address a critical glibc security vulnerability.

a. glibc update for multiple products...

VMSA-2021-0014:VMware ESXi updates address authentication and denial of service vulnerabilities

Advisory ID: VMSA-2021-0014.1 CVSSv3 Range: 5.3-7.0 Issue Date:2021-07-13 Updated On: 2021-08-24 CVEs: CVE-2021-21994, CVE-2021-21995 Synopsis: VMware ESXi updates address authentication and denial of service vulnerabilities CVE-2021-21994, CVE-2021-21995 RSS Feed Download PDF Download Text File...

VMSA-2014-0003:VMware vSphere Client updates address security vulnerabilities

VMSA-2014-0003 VMware vSphere Client updates address security vulnerabilities VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2014-0003 VMware Security Advisory Synopsis: VMware vSphere Client updates address security vulnerabilities VMware Security Advisory Issue date:...