Lucene search
K
VmwareHorizon View

14 matches found

CVE
CVE
added 2018/08/13 9:0 p.m.833 views

CVE-2018-6970

Summary of CVE-2018-6970 (VMware Horizon): A out-of-bounds read in the Message Framework library affects VMware Horizon components. Affected products/versions include Horizon 6 (before 6.2.7), Horizon 7 (before 7.5.1), and Horizon Client (4.x before 4.8.1). The flaw may allow a less-privileged us...

6.5CVSS6AI score0.01781EPSS
CVE
CVE
added 2017/06/08 7:0 p.m.78 views

CVE-2017-4918

CVE-2017-4918 affects VMware Horizon View Client for macOS (2.x, 3.x and 4.x prior to 4.5.0) and is due to a command injection in the service startup script. A local, unprivileged user could exploit this to escalate privileges to root on macOS where the client is installed. The issue was addresse...

10CVSS9.7AI score0.04859EPSS
CVE
CVE
added 2017/06/08 1:0 p.m.75 views

CVE-2017-4912

CVE-2017-4912 is one of multiple out-of-bounds read/write vulnerabilities in VMware TPView.dll’s JPEG2000/TrueType Font parsers that affect VMware Workstation (12.x before 12.5.3) and Horizon View Client (4.x before 4.4.0). The issue arises in the TPView.dll TTF/TFP parsing code and can lead to c...

7.8CVSS6.7AI score0.00369EPSS
CVE
CVE
added 2017/06/08 1:0 p.m.72 views

CVE-2017-4907

CVE-2017-4907 affects VMware Unified Access Gateway and Horizon View with a heap buffer-overflow that enables remote code execution. Affected: Unified Access Gateway 2.5x, 2.7x, 2.8.x before 2.8.1; Horizon View 6.x before 6.2.4 and 7.x before 7.1.0. Root cause: heap-based overflow in the processi...

9.8CVSS9.5AI score0.03764EPSS
CVE
CVE
added 2018/01/05 2:0 p.m.71 views

CVE-2017-4948

CVE-2017-4948 is an out-of-bounds read flaw in TPView.dll affecting VMware Workstation (14.x before 14.1.0 and 12.x) and Horizon View Client (4.x before 4.7.0). Exploitation is tied to scenarios where virtual printing is enabled, which is not by default in Workstation but is by default in Horizon...

7.1CVSS6.9AI score0.00409EPSS
CVE
CVE
added 2017/06/08 1:0 p.m.70 views

CVE-2017-4910

CVE-2017-4910 refers to multiple out-of-bounds read vulnerabilities in the JPEG2000 parser (TPView.dll) affecting VMware Workstation 12.x (before 12.5.3) and Horizon View Client 4.x (before 4.4.0). The root cause is improper validation in TPView.dll leading to code execution or Denial of Service ...

7.8CVSS6.7AI score0.00369EPSS
CVE
CVE
added 2017/06/08 1:0 p.m.70 views

CVE-2017-4913

CVE-2017-4913 is a TPView.dll TrueType Font parser integer overflow vulnerability affecting VMware Workstation 12.x before 12.5.3 and Horizon View Client 4.x before 4.4.0. The issue can allow a guest OS to execute arbitrary code or cause a Denial of Service on Windows hosts running Workstation or...

7.8CVSS6.5AI score0.00389EPSS
CVE
CVE
added 2017/06/08 1:0 p.m.69 views

CVE-2017-4909

CVE-2017-4909 affects VMware Workstation 12.x (pre-12.5.3) and Horizon View Client 4.x (pre-4.4.0). The vulnerability is a heap buffer overflow in the TPView.dll TTF/ JPEG2000 parsing in Cortado ThinPrint, enabling guest-host code execution or Denial of Service on Windows hosts/guests. Exploitati...

7.8CVSS6.5AI score0.00369EPSS
CVE
CVE
added 2017/06/08 1:0 p.m.68 views

CVE-2017-4911

CVE-2017-4911 and related CVEs describe multiple out-of-bounds write/read vulnerabilities affecting VMware Workstation 12.x (pre-12.5.3) and Horizon View Client 4.x (pre-4.4.0) in the JPEG2000/TPView.dll parser, and (for some) TrueType Font handling. The root cause is improper validation inside t...

7.8CVSS6.8AI score0.00369EPSS
CVE
CVE
added 2017/11/17 2:0 p.m.68 views

CVE-2017-4935

CVE-2017-4935 affects VMware Workstation 12.x prior to 12.5.8 and Horizon View Client for Windows 4.x prior to 4.6.1. The vulnerability is an out-of-bounds write in the JPEG2000 parser within TPView.dll that can allow a guest operating on the host to execute code or cause a Denial of Service on t...

7.8CVSS7.9AI score0.00393EPSS
CVE
CVE
added 2017/11/17 2:0 p.m.68 views

CVE-2017-4936

CVE-2017-4936 is an out-of-bounds read vulnerability in the JPEG2000 parser (TPView.dll) affecting VMware Workstation 12.x before 12.5.8 and Horizon View Client for Windows 4.x before 4.6.1. The issue may allow a guest to execute code or cause a Denial of Service on the host or View desktop. VMwa...

7.8CVSS8.2AI score0.00393EPSS
CVE
CVE
added 2017/06/08 1:0 p.m.62 views

CVE-2017-4908

Summary: CVE-2017-4908 affects VMware Workstation 12.x (pre-12.5.3) and Horizon View Client 4.x (pre-4.4.0) due to multiple heap buffer-overflow flaws in the JPEG2000/TFF TPView.dll parser. Exploitation is local and requires virtual printing to be enabled (default on Horizon View; not on Workstat...

7.8CVSS6.8AI score0.00369EPSS
CVE
CVE
added 2016/12/29 9:2 a.m.61 views

CVE-2016-7087

Vulnerability: CVE-2016-7087 affects VMware Horizon View Connection Server. A directory traversal flaw in the loggerBean/loadConfig path allows information disclosure. Affected versions are Horizon View 5.x before 5.3.7, 6.x before 6.2.3, and 7.x before 7.0.1. Impact: remote attackers could discl...

5.3CVSS5AI score0.04362EPSS
CVE
CVE
added 2017/11/17 2:0 p.m.59 views

CVE-2017-4937

CVE-2017-4937 refers to an out-of-bounds read vulnerability in the JPEG2000 parser (TPView.dll) affecting VMware Workstation 12.x prior to 12.5.8 and Horizon View Client for Windows 4.x prior to 4.6.1. Exploitation can lead to code execution or Denial of Service on the host OS in scenarios where ...

7.8CVSS8.2AI score0.00393EPSS