# |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
1 |
CVE-2022-31655 |
79 |
|
XSS |
2022-07-12 |
2022-07-16 |
3.5 |
None |
Remote |
Medium |
??? |
None |
Partial |
None |
VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in alerts. |
2 |
CVE-2022-31654 |
79 |
|
XSS |
2022-07-12 |
2022-07-16 |
3.5 |
None |
Remote |
Medium |
??? |
None |
Partial |
None |
VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in configurations. |
3 |
CVE-2022-22970 |
770 |
|
|
2022-05-12 |
2022-10-07 |
3.5 |
None |
Remote |
Medium |
??? |
None |
None |
Partial |
In spring framework versions prior to 5.3.20+ , 5.2.22+ and old unsupported versions, applications that handle file uploads are vulnerable to DoS attack if they rely on data binding to set a MultipartFile or javax.servlet.Part to a field in a model object. |
4 |
CVE-2022-22944 |
79 |
|
XSS |
2022-03-02 |
2022-03-09 |
3.5 |
None |
Remote |
Medium |
??? |
None |
Partial |
None |
VMware Workspace ONE Boxer contains a stored cross-site scripting (XSS) vulnerability. Due to insufficient sanitization and validation, in VMware Workspace ONE Boxer calendar event descriptions, a malicious actor can inject script tags to execute arbitrary script within a user's window. |
5 |
CVE-2021-32719 |
79 |
|
Exec Code XSS |
2021-06-28 |
2021-07-02 |
3.5 |
None |
Remote |
Medium |
??? |
None |
Partial |
None |
RabbitMQ is a multi-protocol messaging broker. In rabbitmq-server prior to version 3.8.18, when a federation link was displayed in the RabbitMQ management UI via the `rabbitmq_federation_management` plugin, its consumer tag was rendered without proper <script> tag sanitization. This potentially allows for JavaScript code execution in the context of the page. The user must be signed in and have elevated permissions (manage federation upstreams and policies) for this to occur. The vulnerability is patched in RabbitMQ 3.8.18. As a workaround, disable the `rabbitmq_federation_management` plugin and use [CLI tools](https://www.rabbitmq.com/cli.html) instead. |
6 |
CVE-2021-32718 |
79 |
|
Exec Code XSS |
2021-06-28 |
2021-12-10 |
3.5 |
None |
Remote |
Medium |
??? |
None |
Partial |
None |
RabbitMQ is a multi-protocol messaging broker. In rabbitmq-server prior to version 3.8.17, a new user being added via management UI could lead to the user's bane being rendered in a confirmation message without proper `<script>` tag sanitization, potentially allowing for JavaScript code execution in the context of the page. In order for this to occur, the user must be signed in and have elevated permissions (other user management). The vulnerability is patched in RabbitMQ 3.8.17. As a workaround, disable `rabbitmq_management` plugin and use CLI tools for management operations and Prometheus and Grafana for metrics and monitoring. |
7 |
CVE-2021-22021 |
79 |
|
XSS |
2021-08-30 |
2021-09-02 |
3.5 |
None |
Remote |
Medium |
??? |
None |
Partial |
None |
VMware vRealize Log Insight (8.x prior to 8.4) contains a Cross Site Scripting (XSS) vulnerability due to improper user input validation. An attacker with user privileges may be able to inject a malicious payload via the Log Insight UI which would be executed when the victim accesses the shared dashboard link. |
8 |
CVE-2020-5421 |
|
|
Bypass |
2020-09-19 |
2023-01-25 |
3.6 |
None |
Remote |
High |
??? |
Partial |
Partial |
None |
In Spring Framework versions 5.2.0 - 5.2.8, 5.1.0 - 5.1.17, 5.0.0 - 5.0.18, 4.3.0 - 4.3.28, and older unsupported versions, the protections against RFD attacks from CVE-2015-5211 may be bypassed depending on the browser used through the use of a jsessionid path parameter. |
9 |
CVE-2020-3997 |
79 |
|
XSS |
2020-10-23 |
2020-10-30 |
3.5 |
None |
Remote |
Medium |
??? |
None |
Partial |
None |
VMware Horizon Server (7.x prior to 7.10.3 or 7.13.0) contains a Cross Site Scripting (XSS) vulnerability. Successful exploitation of this issue may allow an attacker to inject malicious script which will be executed. |
10 |
CVE-2020-3995 |
401 |
|
|
2020-10-20 |
2020-10-30 |
3.5 |
None |
Remote |
Medium |
??? |
None |
None |
Partial |
In VMware ESXi (6.7 before ESXi670-201908101-SG, 6.5 before ESXi650-202007101-SG), Workstation (15.x before 15.1.0), Fusion (11.x before 11.1.0), the VMCI host drivers used by VMware hypervisors contain a memory leak vulnerability. A malicious actor with access to a virtual machine may be able to trigger a memory leak issue resulting in memory resource exhaustion on the hypervisor if the attack is sustained for extended periods of time. |
11 |
CVE-2020-3988 |
125 |
|
|
2020-09-16 |
2020-09-28 |
3.6 |
None |
Local |
Low |
Not required |
Partial |
None |
Partial |
VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (JPEG2000 parser). A malicious actor with normal access to a virtual machine may be able to exploit these issues to create a partial denial-of-service condition or to leak memory from TPView process running on the system where Workstation or Horizon Client for Windows is installed. |
12 |
CVE-2020-3987 |
125 |
|
|
2020-09-16 |
2020-09-28 |
3.6 |
None |
Local |
Low |
Not required |
Partial |
None |
Partial |
VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (EMR STRETCHDIBITS parser). A malicious actor with normal access to a virtual machine may be able to exploit these issues to create a partial denial-of-service condition or to leak memory from TPView process running on the system where Workstation or Horizon Client for Windows is installed. |
13 |
CVE-2020-3986 |
125 |
|
|
2020-09-16 |
2020-09-28 |
3.6 |
None |
Local |
Low |
Not required |
Partial |
None |
Partial |
VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (EMF Parser). A malicious actor with normal access to a virtual machine may be able to exploit these issues to create a partial denial-of-service condition or to leak memory from TPView process running on the system where Workstation or Horizon Client for Windows is installed. |
14 |
CVE-2020-3981 |
367 |
|
|
2020-10-20 |
2021-07-21 |
3.5 |
None |
Remote |
Medium |
??? |
Partial |
None |
None |
VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202008101-SG, 6.5 before ESXi650-202007101-SG), Workstation (15.x), Fusion (11.x before 11.5.6) contain an out-of-bounds read vulnerability due to a time-of-check time-of-use issue in ACPI device. A malicious actor with administrative access to a virtual machine may be able to exploit this issue to leak memory from the vmx process. |
15 |
CVE-2020-3975 |
79 |
|
XSS |
2020-08-21 |
2020-08-26 |
3.5 |
None |
Remote |
Medium |
??? |
None |
Partial |
None |
VMware App Volumes 2.x prior to 2.18.6 and VMware App Volumes 4 prior to 2006 contain a Stored Cross-Site Scripting (XSS) vulnerability. A malicious actor with access to create and edit applications or create storage groups, may be able to inject malicious script which will be executed by a victim's browser when viewing. |
16 |
CVE-2020-3966 |
362 |
|
Exec Code Overflow |
2020-06-25 |
2020-07-01 |
3.7 |
None |
Local |
High |
Not required |
Partial |
Partial |
Partial |
VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x before 15.5.2), and Fusion (11.x before 11.5.2) contain a heap-overflow due to a race condition issue in the USB 2.0 controller (EHCI). A malicious actor with local access to a virtual machine may be able to exploit this vulnerability to execute code on the hypervisor from a virtual machine. Additional conditions beyond the attacker's control must be present for exploitation to be possible. |
17 |
CVE-2020-3960 |
125 |
|
|
2021-09-15 |
2021-09-28 |
3.6 |
None |
Local |
Low |
Not required |
Partial |
None |
Partial |
VMware ESXi (6.7 before ESXi670-202006401-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x before 15.5.5), and Fusion (11.x before 11.5.5) contain an out-of-bounds read vulnerability in NVMe functionality. A malicious actor with local non-administrative access to a virtual machine with a virtual NVMe controller present may be able to read privileged information contained in physical memory. |
18 |
CVE-2020-3953 |
79 |
|
XSS |
2020-04-15 |
2021-07-21 |
3.5 |
None |
Remote |
Medium |
??? |
None |
Partial |
None |
Cross Site Scripting (XSS) vulnerability exists in VMware vRealize Log Insight prior to 8.1.0 due to improper Input validation. |
19 |
CVE-2019-11291 |
79 |
|
XSS |
2019-11-22 |
2022-07-01 |
3.5 |
None |
Remote |
Medium |
??? |
None |
Partial |
None |
Pivotal RabbitMQ, 3.7 versions prior to v3.7.20 and 3.8 version prior to v3.8.1, and RabbitMQ for PCF, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain two endpoints, federation and shovel, which do not properly sanitize user input. A remote authenticated malicious user with administrative access could craft a cross site scripting attack via the vhost or node name fields that could grant access to virtual hosts and policy management information. |
20 |
CVE-2019-5536 |
20 |
|
|
2019-10-28 |
2021-07-21 |
3.5 |
None |
Remote |
Medium |
??? |
None |
None |
Partial |
VMware ESXi (6.7 before ESXi670-201908101-SG and 6.5 before ESXi650-201910401-SG), Workstation (15.x before 15.5.0) and Fusion (11.x before 11.5.0) contain a denial-of-service vulnerability in the shader functionality. Successful exploitation of this issue may allow attackers with normal user privileges to create a denial-of-service condition on their own VM. Exploitation of this issue require an attacker to have access to a virtual machine with 3D graphics enabled. It is not enabled by default on ESXi and is enabled by default on Workstation and Fusion. |
21 |
CVE-2018-11076 |
|
|
+Info |
2018-11-26 |
2020-08-24 |
3.3 |
None |
Local Network |
Low |
Not required |
Partial |
None |
None |
Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0 and 7.4.1 and Dell EMC Integrated Data Protection Appliance (IDPA) 2.0 are affected by an information exposure vulnerability. Avamar Java management console's SSL/TLS private key may be leaked in the Avamar Java management client package. The private key could potentially be used by an unauthenticated attacker on the same data-link layer to initiate a MITM attack on management console users. |
22 |
CVE-2018-6957 |
|
|
|
2018-03-15 |
2019-10-03 |
3.5 |
None |
Remote |
Medium |
??? |
None |
None |
Partial |
VMware Workstation (14.x before 14.1.1, 12.x) and Fusion (10.x before 10.1.1 and 8.x) contain a denial-of-service vulnerability which can be triggered by opening a large number of VNC sessions. Note: In order for exploitation to be possible on Workstation and Fusion, VNC must be manually enabled. |
23 |
CVE-2017-4930 |
79 |
|
XSS |
2017-11-16 |
2017-12-04 |
3.5 |
None |
Remote |
Medium |
??? |
None |
Partial |
None |
VMware AirWatch Console 9.x prior to 9.2.0 contains a vulnerability that could allow an authenticated AWC user to add a malicious URL to an enrolled device's 'Links' page. Successful exploitation of this issue could result in an unsuspecting AWC user being redirected to a malicious URL. |
24 |
CVE-2017-4926 |
79 |
|
XSS |
2017-09-15 |
2017-09-21 |
3.5 |
None |
Remote |
Medium |
??? |
None |
Partial |
None |
VMware vCenter Server (6.5 prior to 6.5 U1) contains a vulnerability that may allow for stored cross-site scripting (XSS). An attacker with VC user privileges can inject malicious java-scripts which will get executed when other VC users access the page. |
25 |
CVE-2016-7463 |
79 |
|
XSS |
2016-12-29 |
2016-12-31 |
3.5 |
None |
Remote |
Medium |
??? |
None |
Partial |
None |
Cross-site scripting (XSS) vulnerability in the Host Client in VMware vSphere Hypervisor (aka ESXi) 5.5 and 6.0 allows remote authenticated users to inject arbitrary web script or HTML via a crafted VM. |
26 |
CVE-2015-1044 |
|
|
DoS |
2015-01-29 |
2017-09-08 |
3.3 |
None |
Local Network |
Low |
Not required |
None |
None |
Partial |
vmware-authd (aka the Authorization process) in VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, and VMware ESXi 5.0 through 5.5 allows attackers to cause a host OS denial of service via unspecified vectors. |
27 |
CVE-2015-1043 |
20 |
|
DoS |
2015-01-29 |
2017-09-08 |
3.3 |
None |
Local Network |
Low |
Not required |
None |
None |
Partial |
The Host Guest File System (HGFS) in VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, and VMware Fusion 6.x before 6.0.5 and 7.x before 7.0.1 allows guest OS users to cause a guest OS denial of service via unspecified vectors. |
28 |
CVE-2014-1208 |
|
|
DoS |
2014-01-17 |
2017-08-29 |
3.3 |
None |
Local Network |
Low |
Not required |
None |
None |
Partial |
VMware Workstation 9.x before 9.0.1, VMware Player 5.x before 5.0.1, VMware Fusion 5.x before 5.0.1, VMware ESXi 4.0 through 5.1, and VMware ESX 4.0 and 4.1 allow guest OS users to cause a denial of service (VMX process disruption) by using an invalid port. |
29 |
CVE-2011-1681 |
16 |
|
|
2011-04-10 |
2017-08-17 |
3.3 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
None |
vmware-hgfsmounter in VMware Open Virtual Machine Tools (aka open-vm-tools) 8.4.2-261024 and earlier attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to trigger corruption of this file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089. |
30 |
CVE-2006-3589 |
|
|
|
2006-07-21 |
2018-10-30 |
3.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
None |
vmware-config.pl in VMware for Linux, ESX Server 2.x, and Infrastructure 3 does not check the return code from a Perl chmod function call, which might cause an SSL key file to be created with an unsafe umask that allows local users to read or modify the SSL key. |
31 |
CVE-2003-0480 |
|
|
+Priv |
2003-08-07 |
2016-10-18 |
3.7 |
None |
Local |
High |
Not required |
Partial |
Partial |
Partial |
VMware Workstation 4.0 for Linux allows local users to overwrite arbitrary files and gain privileges via "symlink manipulation." |
32 |
CVE-2001-1059 |
|
|
|
2001-07-30 |
2017-10-10 |
3.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
None |
VMWare creates a temporary file vmware-log.USERNAME with insecure permissions, which allows local users to read or modify license information. |
33 |
CVE-2000-0090 |
|
|
DoS |
2000-01-17 |
2008-09-10 |
3.6 |
None |
Local |
Low |
Not required |
None |
Partial |
Partial |
VMWare 1.1.2 allows local users to cause a denial of service via a symlink attack. |