Esx Security Vulnerabilities and Issues — Esx CVE List

Lucene search

VmwareEsx

8 matches found

CVE•added 2012/05/04 4:55 p.m.•76 views

CVE-2012-1516

The VMX process in VMware ESXi 3.5 through 4.1 and ESX 3.5 through 4.1 does not properly handle RPC commands, which allows guest OS users to cause a denial of service (memory overwrite and process crash) or possibly execute arbitrary code on the host OS via vectors involving data pointers.

9.9CVSS9.5AI score0.01155EPSS

CVE•added 2012/06/14 8:55 p.m.•54 views

CVE-2012-3288

VMware Workstation 7.x before 7.1.6 and 8.x before 8.0.4, VMware Player 3.x before 3.1.6 and 4.x before 4.0.4, VMware Fusion 4.x before 4.1.3, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 allow user-assisted remote attackers to execute arbitrary code on the host OS or cause a denial ...

9.3CVSS7.6AI score0.02027EPSS

CVE•added 2012/05/04 4:55 p.m.•53 views

CVE-2012-1517

The VMX process in VMware ESXi 4.1 and ESX 4.1 does not properly handle RPC commands, which allows guest OS users to cause a denial of service (memory overwrite and process crash) or possibly execute arbitrary code on the host OS via vectors involving function pointers.

9CVSS9.5AI score0.0128EPSS

CVE•added 2012/05/04 4:55 p.m.•53 views

CVE-2012-2450

VMware Workstation 8.x before 8.0.3, VMware Player 4.x before 4.0.3, VMware Fusion 4.x before 4.1.2, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 do not properly register SCSI devices, which allows guest OS users to cause a denial of service (invalid write operation and VMX process c...

9CVSS9.7AI score0.01251EPSS

CVE•added 2012/05/04 4:55 p.m.•51 views

CVE-2012-2449

VMware Workstation 8.x before 8.0.3, VMware Player 4.x before 4.0.3, VMware Fusion 4.x through 4.1.2, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 do not properly configure the virtual floppy device, which allows guest OS users to cause a denial of service (out-of-bounds write operat...

9CVSS9.7AI score0.02408EPSS

CVE•added 2008/06/05 8:32 p.m.•50 views

CVE-2008-2097

Buffer overflow in the openwsman management service in VMware ESXi 3.5 and ESX 3.5 allows remote authenticated users to gain privileges via an "invalid Content-Length."

9CVSS9.4AI score0.05516EPSS

CVE•added 2008/11/10 2:12 p.m.•50 views

CVE-2008-4281

Directory traversal vulnerability in VMWare ESXi 3.5 before ESXe350-200810401-O-UG and ESX 3.5 before ESX350-200810201-UG allows administrators with the Datastore.FileManagement privilege to gain privileges via unknown vectors.

9.3CVSS6.6AI score0.0028EPSS

CVE•added 2013/09/10 11:28 a.m.•43 views

CVE-2013-3658

Directory traversal vulnerability in VMware ESXi 4.0 through 5.0, and ESX 4.0 and 4.1, allows remote attackers to delete arbitrary host OS files via unspecified vectors.

9.4CVSS7AI score0.00691EPSS