VIR Vulnerability Intelligence Relay

Search

Found 140 results in 36ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-41702 high 7.0 7.0 vmware 20d ago VMware Fusion contains a TOCTOU (Time-of-check Time-of-use) vulnerability that occurs during an operation performed by a SETUID binary. A malicious actor with local non-administrative user privileges…
CVE-2026-41713 high 8.2 8.2 vmware 23d ago Spring AI: Prompt Injection via Memory Poisoning in PromptChatMemoryAdvisor
CVE-2026-41712 high 7.5 7.5 vmware 23d ago Spring AI: ChatMemory DEFAULT_CONVERSATION_ID causes unintended cross-user data leakage
CVE-2026-41705 high 8.6 8.6 vmware 26d ago Spring AI's MilvusVectorStore#doDelete(List) implementation is vulnerable to filter-expression injection via unsanitized document IDs
CVE-2026-41002 high 8.1 8.1 vmware 28d ago Spring Cloud Config Server Susceptible To TOCTOU Attack
CVE-2026-40982 critical 9.1 9.1 vmware 28d ago Spring Cloud Config vulnerable to Path Traversal
CVE-2026-40981 high 7.5 7.5 vmware 28d ago Spring Cloud Config has an Authorization Bypass Through User-Controlled Key
CVE-2026-31431 high 7.8 10.0 KEVEXPFIX rhelarch arch sles redhatsusearista 1mo ago Linux Kernel contains an incorrect resource transfer between spheres vulnerability that could allow for privilege escalation.
CVE-2026-22741 low 3.1 3.1 debian debian vmware 1mo ago Spring MVC and WebFlux applications are vulnerable to cache poisoning when resolving static resources.
CVE-2026-40968 high 8.8 8.8 vmware 1mo ago Spring gRPC SecurityContext leaks across requests upon authorization failure
CVE-2026-40978 high 8.8 8.8 vmware 1mo ago Spring AI has SQL Injection in CosmosDBVectorStore.doDelete()
CVE-2026-40967 high 8.6 8.6 vmware 1mo ago Spring AI has a VectorStore FilterExpression Converter injection
CVE-2026-40976 critical 9.1 9.1 vmware 1mo ago Spring Boot's default security filter chain has no authorization rule with Actuator but without Health
CVE-2026-40975 high 7.5 7.5 vmware 1mo ago Spring Boot's random value property source uses a weak PRNG unsuitable for secrets
CVE-2026-40974 critical 9.8 9.8 vmware 1mo ago Spring Boot's Cassandra SSL auto-configuration disables TLS hostname verification
CVE-2026-40973 high 7.0 7.0 vmware 1mo ago Spring Boot accepts predictable temp directory without ownership verification
CVE-2026-40972 high 7.5 7.5 vmware 1mo ago Spring Boot DevTools remote secret comparison is vulnerable to timing attacks
CVE-2026-40971 critical 9.1 9.1 vmware 1mo ago Spring Boot's RabbitMQ auto-configuration doesn't perform hostname verification when connecting to the RabbitMQ broker
CVE-2026-22744 high 7.5 7.5 vmware 2mo ago In RedisFilterExpressionConverter of spring-ai-redis-store, when a user-controlled string is passed as a filter value for a TAG field, stringValue() inserts the value directly into the @field:{VALUE}…
CVE-2026-22742 high 8.6 8.6 vmware 2mo ago Spring AI: Insufficient Validation causes SSRF when processing multimodal messages with user-supplied URLs
CVE-2026-22738 critical 9.8 9.8 vmware 2mo ago Spring AI: SpEL injection is triggered when a user-supplied value is used as a filter expression key
CVE-2022-22977 high 7.1 7.1 vmware 4y ago VMware Tools for Windows(12.0.0, 11.x.y and 10.x.y) contains an XML External Entity (XXE) vulnerability. A malicious actor with non-administrative local user privileges in the Windows guest OS, where…
CVE-2021-21974 high 8.8 8.8 vmware 5y ago OpenSLP as used in ESXi (7.0 before ESXi70U1c-17325551, 6.7 before ESXi670-202102401-SG, 6.5 before ESXi650-202102101-SG) has a heap-overflow vulnerability. A malicious actor residing within the same…
CVE-2017-4943 high 7.8 7.8 vmware 9y ago VMware vCenter Server Appliance (vCSA) (6.5 before 6.5 U1d) contains a local privilege escalation vulnerability via the 'showlog' plugin. Successful exploitation of this issue could result in a low p…
CVE-2017-4941 high 8.8 8.8 macos macos vmware 9y ago VMware ESXi (6.0 before ESXi600-201711101-SG, 5.5 ESXi550-201709101-SG), Workstation (12.x before 12.5.8), and Fusion (8.x before 8.5.9) contain a vulnerability that could allow an authenticated VNC …
CVE-2017-4933 high 8.8 8.8 macos macos vmware 9y ago VMware ESXi (6.5 before ESXi650-201710401-BG), Workstation (12.x before 12.5.8), and Fusion (8.x before 8.5.9) contain a vulnerability that could allow an authenticated VNC session to cause a heap ov…
CVE-2017-4995 high 8.1 8.1 vmware 9y ago Deserialization of Untrusted Data in Spring Security
CVE-2017-4939 high 7.8 7.8 vmware 9y ago VMware Workstation (12.x before 12.5.8) installer contains a DLL hijacking issue that exists due to some DLL files loaded by the application improperly. This issue may allow an attacker to load a DLL…
CVE-2017-4937 high 7.8 7.8 vmware 9y ago VMware Workstation (12.x before 12.5.8) and Horizon View Client for Windows (4.x before 4.6.1) contain an out-of-bounds read vulnerability in JPEG2000 parser in the TPView.dll. On Workstation, this m…
CVE-2017-4936 high 7.8 7.8 vmware 9y ago VMware Workstation (12.x before 12.5.8) and Horizon View Client for Windows (4.x before 4.6.1) contain an out-of-bounds read vulnerability in JPEG2000 parser in the TPView.dll. On Workstation, this m…
CVE-2017-4935 high 7.8 7.8 vmware 9y ago VMware Workstation (12.x before 12.5.8) and Horizon View Client for Windows (4.x before 4.6.1) contain an out-of-bounds write vulnerability in JPEG2000 parser in the TPView.dll. On Workstation, this …
CVE-2017-4934 high 8.8 8.8 vmware 9y ago VMware Workstation (12.x before 12.5.8) and Fusion (8.x before 8.5.9) contain a heap buffer-overflow vulnerability in VMNAT device. This issue may allow a guest to execute code on the host.
CVE-2017-4928 high 7.5 7.5 vmware 9y ago The flash-based vSphere Web Client (6.0 prior to 6.0 U3c and 5.5 prior to 5.5 U3f) i.e. not the new HTML5-based vSphere Client, contains SSRF and CRLF injection issues due to improper neutralization …
CVE-2017-4927 high 7.5 7.5 vmware 9y ago VMware vCenter Server (6.5 prior to 6.5 U1 and 6.0 prior to 6.0 U3c) does not correctly handle specially crafted LDAP network packets which may allow for remote denial of service.
CVE-2017-4932 high 7.8 7.8 vmware 9y ago VMware AirWatch Launcher for Android prior to 3.2.2 contains a vulnerability that could allow an escalation of privilege from the launcher UI context menu to native UI functionality and privilege. Su…
CVE-2017-4931 high 7.8 7.8 vmware 9y ago VMware AirWatch Console 9.x prior to 9.2.0 contains a vulnerability that could allow an authenticated AWC user to add malicious data to an enrolled device's log files. Successful exploitation of this…
CVE-2017-4924 high 8.8 8.8 vmware 9y ago VMware ESXi (ESXi 6.5 without patch ESXi650-201707101-SG), Workstation (12.x before 12.5.7) and Fusion (8.x before 8.5.8) contain an out-of-bounds write vulnerability in SVGA device. This issue may a…
CVE-2015-5258 high 8.8 8.8 fedora fedora vmware 9y ago springframework-social Cross-Site Request Forgery vulnerability
CVE-2017-4923 critical 9.8 9.8 vmware 9y ago VMware vCenter Server (6.5 prior to 6.5 U1) contains an information disclosure vulnerability. This issue may allow plaintext credentials to be obtained when using the vCenter Server Appliance file-ba…
CVE-2017-4921 high 8.8 8.8 vmware 9y ago VMware vCenter Server (6.5 prior to 6.5 U1) contains an insecure library loading issue that occurs due to the use of LD_LIBRARY_PATH variable in an unsafe manner. Successful exploitation of this issu…
CVE-2017-4919 critical 9.0 9.0 vmware 9y ago VMware vCenter Server 5.5, 6.0, 6.5 allows vSphere users with certain, limited vSphere privileges to use the VIX API to access Guest Operating Systems without the need to authenticate.
CVE-2017-4918 critical 9.8 9.8 vmware 9y ago VMware Horizon View Client (2.x, 3.x and 4.x prior to 4.5.0) contains a command injection vulnerability in the service startup script. Successful exploitation of this issue may allow unprivileged use…
CVE-2017-4913 high 7.8 7.8 vmware 9y ago VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain an integer-overflow vulnerability in the True Type Font parser in the TPView.dll. On Workstation, this m…
CVE-2017-4912 high 7.8 7.8 vmware 9y ago VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain multiple out-of-bounds read vulnerabilities in TrueType Font (TTF) parser in the TPView.dll. On Workstat…
CVE-2017-4911 high 7.8 7.8 vmware 9y ago VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain multiple out-of-bounds write vulnerabilities in JPEG2000 parser in the TPView.dll. On Workstation, this …
CVE-2017-4910 high 7.8 7.8 vmware 9y ago VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain multiple out-of-bounds read vulnerabilities in JPEG2000 parser in the TPView.dll. On Workstation, this m…
CVE-2017-4909 high 7.8 7.8 vmware 9y ago VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain a heap buffer-overflow vulnerability in TrueType Font (TTF) parser in the TPView.dll. On Workstation, th…
CVE-2017-4908 high 7.8 7.8 vmware 9y ago VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain multiple heap buffer-overflow vulnerabilities in JPEG2000 parser in the TPView.dll. On Workstation, this…
CVE-2017-4907 critical 9.8 9.8 vmware 9y ago VMware Unified Access Gateway (2.5.x, 2.7.x, 2.8.x prior to 2.8.1) and Horizon View (7.x prior to 7.1.0, 6.x prior to 6.2.4) contain a heap buffer-overflow vulnerability which may allow a remote atta…
CVE-2017-4901 critical 9.9 10.0 EXP vmware 9y ago The drag-and-drop (DnD) function in VMware Workstation 12.x before version 12.5.4 and Fusion 8.x before version 8.5.5 has an out-of-bounds memory access vulnerability. This may allow a guest to execu…
CVE-2017-4904 high 8.8 8.8 macos macos vmware 9y ago The XHCI controller in VMware ESXi 6.5 without patch ESXi650-201703410-SG, 6.0 U3 without patch ESXi600-201703401-SG, 6.0 U2 without patch ESXi600-201703403-SG, 6.0 U1 without patch ESXi600-201703402…
CVE-2017-4903 high 8.8 8.8 macos macos vmware 9y ago VMware ESXi 6.5 without patch ESXi650-201703410-SG, 6.0 U3 without patch ESXi600-201703401-SG, 6.0 U2 without patch ESXi600-201703403-SG, 6.0 U1 without patch ESXi600-201703402-SG, and 5.5 without pa…
CVE-2017-4902 high 8.8 8.8 macos macos vmware 9y ago VMware ESXi 6.5 without patch ESXi650-201703410-SG and 5.5 without patch ESXi550-201703401-SG; Workstation Pro / Player 12.x prior to 12.5.5; and Fusion Pro / Fusion 8.x prior to 8.5.6 have a Heap Bu…
CVE-2017-4898 high 8.8 8.8 vmware 9y ago VMware Workstation Pro/Player 12.x before 12.5.3 contains a DLL loading vulnerability that occurs due to the "vmware-vmx" process loading DLLs from a path defined in the local environment-variable. S…
CVE-2017-4917 critical 9.8 9.8 vmware 9y ago VMware vSphere Data Protection (VDP) 6.1.x, 6.0.x, 5.8.x, and 5.5.x locally stores vCenter Server credentials using reversible encryption. This issue may allow plaintext credentials to be obtained.
CVE-2017-4914 critical 9.8 10.0 EXP vmware 9y ago VMware vSphere Data Protection (VDP) 6.1.x, 6.0.x, 5.8.x, and 5.5.x contains a deserialization issue. Exploitation of this issue may allow a remote attacker to execute commands on the appliance.
CVE-2016-5007 high 7.5 7.5 FIX debian debian pivotal_softwarevmware 9y ago Spring Security and Spring Framework may not recognize certain paths that should be protected
CVE-2015-5211 critical 9.6 9.6 FIX debian debian vmware 9y ago Files or Directories Accessible to External Parties in org.springframework:spring-core
CVE-2014-3527 critical 9.8 9.8 vmware 9y ago Authorization Bypass in Spring Security
CVE-2014-0225 high 8.8 8.8 FIX debian debian pivotal_softwarevmware 9y ago Improper Restriction of XML External Entity Reference in Spring Framework
CVE-2014-0097 high 7.3 7.3 FIX debian debian vmware 9y ago Improper Authentication in Spring Security
CVE-2017-4915 high 7.8 8.8 EXP linux-kernel vmware 9y ago VMware Workstation Pro/Player contains an insecure library loading vulnerability via ALSA sound driver configuration files. Successful exploitation of this issue may allow unprivileged host users to …
CVE-2017-4896 low 3.8 3.8 vmware 9y ago Airwatch Inbox for Android contains a vulnerability that may allow a rooted device to decrypt the local data used by the application. Successful exploitation of this issue may result in an unauthoriz…
CVE-2017-4895 high 8.8 8.8 vmware 9y ago Airwatch Agent for Android contains a vulnerability that may allow a device to bypass root detection. Successful exploitation of this issue may result in an enrolled device having unrestricted access…
CVE-2016-2173 critical 9.8 9.8 fedora fedora vmware 9y ago Improper Input Validation in Spring AMQP
CVE-2016-9879 high 7.5 7.5 vmwareibm 10y ago Security Constraint Bypass in Spring Security
CVE-2016-9878 high 7.5 7.5 FIX debian debian pivotal_softwarevmware 10y ago Pivotal Spring Framework Paths provided to the ResourceServlet were not properly sanitized
CVE-2016-7462 high 8.5 8.5 vmware 10y ago The Suite REST API in VMware vRealize Operations (aka vROps) 6.x before 6.4.0 allows remote authenticated users to write arbitrary content to files or rename files via a crafted DiskFileItem in a rel…
CVE-2016-7461 high 8.8 8.8 vmware 10y ago The drag-and-drop (aka DnD) function in VMware Workstation Pro 12.x before 12.5.2 and VMware Workstation Player 12.x before 12.5.2 and VMware Fusion and Fusion Pro 8.x before 8.5.2 allows guest OS us…
CVE-2016-7460 critical 9.1 9.1 vmware 10y ago The Single Sign-On feature in VMware vCenter Server 5.5 before U3e and 6.0 before U2a and vRealize Automation 6.x before 6.2.5 allows remote attackers to read arbitrary files or cause a denial of ser…
CVE-2016-7459 high 7.7 7.7 vmware 10y ago VMware vCenter Server 5.5 before U3e and 6.0 before U2a allows remote authenticated users to read arbitrary files via a (1) Log Browser, (2) Distributed Switch setup, or (3) Content Library XML docum…
CVE-2016-7457 critical 10.0 10.0 vmware 10y ago VMware vRealize Operations (aka vROps) 6.x before 6.4.0 allows remote authenticated users to gain privileges, or halt and remove virtual machines, via unspecified vectors.
CVE-2016-7456 critical 9.8 10.0 EXP vmware 10y ago VMware vSphere Data Protection (VDP) 5.5.x though 6.1.x has an SSH private key with a publicly known password, which makes it easier for remote attackers to obtain login access via an SSH session.
CVE-2016-7086 high 7.8 7.8 vmware 10y ago The installer in VMware Workstation Pro 12.x before 12.5.0 and VMware Workstation Player 12.x before 12.5.0 on Windows allows local users to gain privileges via a Trojan horse setup64.exe file in the…
CVE-2016-7085 high 7.8 7.8 vmware 10y ago Untrusted search path vulnerability in the installer in VMware Workstation Pro 12.x before 12.5.0 and VMware Workstation Player 12.x before 12.5.0 on Windows allows local users to gain privileges via…
CVE-2016-7084 high 7.8 8.8 EXP vmware 10y ago tpview.dll in VMware Workstation Pro 12.x before 12.5.0 and VMware Workstation Player 12.x before 12.5.0 on Windows, when Cortado ThinPrint virtual printing is enabled, allows guest OS users to execu…
CVE-2016-7083 high 7.8 8.8 EXP vmware 10y ago VMware Workstation Pro 12.x before 12.5.0 and VMware Workstation Player 12.x before 12.5.0 on Windows, when Cortado ThinPrint virtual printing is enabled, allow guest OS users to execute arbitrary co…
CVE-2016-7082 high 7.8 7.8 vmware 10y ago VMware Workstation Pro 12.x before 12.5.0 and VMware Workstation Player 12.x before 12.5.0 on Windows, when Cortado ThinPrint virtual printing is enabled, allow guest OS users to execute arbitrary co…
CVE-2016-7081 high 7.8 7.8 vmware 10y ago Multiple heap-based buffer overflows in VMware Workstation Pro 12.x before 12.5.0 and VMware Workstation Player 12.x before 12.5.0 on Windows, when Cortado ThinPrint virtual printing is enabled, allo…
CVE-2016-7080 high 7.8 7.8 macos macos vmware 10y ago The graphic acceleration functions in VMware Tools 9.x and 10.x before 10.0.9 on OS X allow local users to gain privileges or cause a denial of service (NULL pointer dereference) via unspecified vect…
CVE-2016-7079 high 7.8 7.8 macos macos vmware 10y ago The graphic acceleration functions in VMware Tools 9.x and 10.x before 10.0.9 on OS X allow local users to gain privileges or cause a denial of service (NULL pointer dereference) via unspecified vect…
CVE-2016-5336 critical 9.8 9.8 vmware 10y ago VMware vRealize Automation 7.0.x before 7.1 allows remote attackers to execute arbitrary code via unspecified vectors.
CVE-2016-5335 high 7.8 7.8 vmware 10y ago VMware Identity Manager 2.x before 2.7 and vRealize Automation 7.0.x before 7.1 allow local users to obtain root access via unspecified vectors.
CVE-2016-5330 high 7.8 8.8 EXP macos macos vmware 10y ago Untrusted search path vulnerability in the HGFS (aka Shared Folders) feature in VMware Tools 10.0.5 in VMware ESXi 5.0 through 6.0, VMware Workstation Pro 12.1.x before 12.1.1, VMware Workstation Pla…
CVE-2016-2082 high 8.8 8.8 vmware 10y ago Cross-site request forgery (CSRF) vulnerability in VMware vRealize Log Insight 2.x and 3.x before 3.3.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
CVE-2016-2077 critical 9.8 9.8 vmware 10y ago VMware Workstation 11.x before 11.1.3 and VMware Player 7.x before 7.1.3 on Windows incorrectly access an executable file, which allows host OS users to gain host OS privileges via unspecified vector…
CVE-2016-2076 high 7.6 7.6 vmware 10y ago Client Integration Plugin (CIP) in VMware vCenter Server 5.5 U3a, U3b, and U3c and 6.0 before U2; vCloud Director 5.5.5; and vRealize Automation Identity Appliance 6.2.4 before 6.2.4.1 mishandles ses…
CVE-2015-6934 high 7.3 7.3 vmware 11y ago Serialized-object interfaces in VMware vRealize Orchestrator 6.x, vCenter Orchestrator 5.x, vRealize Operations 6.x, vCenter Operations 5.x, and vCenter Application Discovery Manager (vADM) 7.x allow…
CVE-2015-2342 critical 10.0 EXP vmware 11y ago The JMX RMI service in VMware vCenter Server 5.0 before u3e, 5.1 before u3b, 5.5 before u3, and 6.0 before u1 does not restrict registration of MBeans, which allows remote attackers to execute arbitr…
CVE-2015-3650 high 7.2 vmware 11y ago vmware-vmx.exe in VMware Workstation 7.x through 10.x before 10.0.7 and 11.x before 11.1.1, VMware Player 5.x and 6.x before 6.0.7 and 7.x before 7.1.1, and VMware Horizon Client 5.x local-mode befor…
CVE-2015-2341 high 7.8 vmware 11y ago VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.6, and VMware Fusion 6.x before 6.0.6 and 7.x before 7.0.1 allow attackers to cause a denial of service against a 32-bit guest OS o…
CVE-2015-1044 low 3.3 vmware 12y ago vmware-authd (aka the Authorization process) in VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, and VMware ESXi 5.0 through 5.5 allows attackers to cause a host OS denial of se…
CVE-2015-1043 low 3.3 vmware 12y ago The Host Guest File System (HGFS) in VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, and VMware Fusion 6.x before 6.0.5 and 7.x before 7.0.1 allows guest OS users to cause a gu…
CVE-2014-8373 critical 9.0 vmware 12y ago The VMware Remote Console (VMRC) function in VMware vCloud Automation Center (vCAC) 6.0.1 through 6.1.1 allows remote authenticated users to gain privileges via vectors involving the "Connect (by) Us…
CVE-2014-3790 critical 9.0 vmware 12y ago Ruby vSphere Console (RVC) in VMware vCenter Server Appliance allows remote authenticated users to execute arbitrary commands as root by escaping from a chroot jail.
CVE-2014-1209 critical 9.3 vmware 12y ago VMware vSphere Client 4.0, 4.1, 5.0 before Update 3, and 5.1 before Update 2 does not properly validate updates to Client files, which allows remote attackers to trigger the downloading and execution…
CVE-2014-1208 low 3.3 vmware 13y ago VMware Workstation 9.x before 9.0.1, VMware Player 5.x before 5.0.1, VMware Fusion 5.x before 5.0.1, VMware ESXi 4.0 through 5.1, and VMware ESX 4.0 and 4.1 allow guest OS users to cause a denial of …
CVE-2013-3519 high 7.9 vmware 13y ago lgtosync.sys in VMware Workstation 9.x before 9.0.3, VMware Player 5.x before 5.0.3, VMware Fusion 5.x before 5.0.4, VMware ESXi 4.0 through 5.1, and VMware ESX 4.0 and 4.1, when a 32-bit Windows gue…
CVE-2013-5972 high 7.2 vmware 13y ago VMware Workstation 9.x before 9.0.3 and VMware Player 5.x before 5.0.3 on Linux do not properly handle shared libraries, which allows host OS users to gain host OS privileges via unspecified vectors.
CVE-2013-3520 high 8.5 EXP vmware 13y ago VMware vCenter Chargeback Manager (aka CBM) before 2.5.1 does not proper handle uploads, which allows remote attackers to execute arbitrary code via unspecified vectors.