Esxi@8.0 Security Vulnerabilities and Issues — Esxi@8.0 CVE List

Lucene search

VmwareEsxi8.0

11 matches found

CVE•added 2025/03/04 12:15 p.m.•708 views

CVE-2025-22226

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability due to an out-of-bounds read in HGFS. A malicious actor with administrative privileges to a virtual machine may be able to exploit this issue to leak memory from the vmx process.

7.1CVSS7.7AI score0.0362EPSS

CVE•added 2025/03/04 12:15 p.m.•455 views

CVE-2025-22224

VMware ESXi, and Workstation contain a TOCTOU (Time-of-Check Time-of-Use) vulnerability that leads to an out-of-bounds write. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host.

9.3CVSS9.3AI score0.37103EPSS

CVE•added 2025/03/04 12:15 p.m.•321 views

CVE-2025-22225

VMware ESXi contains an arbitrary write vulnerability. A malicious actor with privileges within the VMX process may trigger an arbitrary kernel write leading to an escape of the sandbox.

8.2CVSS8.8AI score0.04911EPSS

CVE•added 2024/06/25 3:15 p.m.•258 views

CVE-2024-37085

VMware ESXi contains an authentication bypass vulnerability. A malicious actor with sufficient Active Directory (AD) permissions can gain full access to an ESXi host that was previously configured to use AD for user management https://blogs.vmware.com/vsphere/2012/09/joining-vsphere-hosts-to-active...

7.2CVSS7.4AI score0.53731EPSS

CVE•added 2022/12/14 7:15 p.m.•227 views

CVE-2022-31705

VMware ESXi, Workstation, and Fusion contain a heap out-of-bounds write vulnerability in the USB 2.0 controller (EHCI). A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host. On ESX...

8.2CVSS8.4AI score0.01301EPSS

CVE•added 2024/03/05 6:15 p.m.•220 views

CVE-2024-22255

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability in the UHCI USB controller. A malicious actor with administrative access to a virtual machine may be able to exploit this issue to leak memory from the vmx process.

7.1CVSS7.7AI score0.02945EPSS

CVE•added 2024/03/05 6:15 p.m.•149 views

CVE-2024-22254

VMware ESXi contains an out-of-bounds write vulnerability. A malicious actor with privileges within the VMX process may trigger an out-of-bounds write leading to an escape of the sandbox.

8.2CVSS8.6AI score0.00234EPSS

CVE•added 2024/03/05 6:15 p.m.•137 views

CVE-2024-22252

VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the XHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host. On ESXi, the exploitat...

9.3CVSS9.5AI score0.00327EPSS

CVE•added 2024/03/05 6:15 p.m.•110 views

CVE-2024-22253

VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the UHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host. On ESXi, the exploitat...

9.3CVSS9.5AI score0.00045EPSS

CVE•added 2024/05/21 6:15 p.m.•100 views

CVE-2024-22273

The storage controllers on VMware ESXi, Workstation, and Fusion have out-of-bounds read/write vulnerability. A malicious actor with access to a virtual machine with storage controllers enabled may exploit this issue to create a denial of service condition or execute code on the hypervisor from a vi...

8.1CVSS7.1AI score0.00229EPSS

CVE•added 2024/06/25 3:15 p.m.•61 views

CVE-2024-37086

VMware ESXi contains an out-of-bounds read vulnerability. Amalicious actor with local administrative privileges on a virtualmachine with an existing snapshot may trigger an out-of-bounds readleading to a denial-of-service condition of the host.

6.8CVSS6.7AI score0.00046EPSS