This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Vmware First view 2003-12-31
Product Esx Last view 2014-01-17
Version 3.5.0 Type
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:o:vmware:esx:4.1:*:*:*:*:*:*:* 22
cpe:2.3:o:vmware:esx:4.0:*:*:*:*:*:*:* 19
cpe:2.3:o:vmware:esx:3.5:*:*:*:*:*:*:* 15
cpe:2.3:o:vmware:esx:3.5:update2:*:*:*:*:*:* 13
cpe:2.3:o:vmware:esx:3.5:update1:*:*:*:*:*:* 13
cpe:2.3:o:vmware:esx:3.5:update3:*:*:*:*:*:* 13
cpe:2.3:o:vmware:esx:3.0.1:*:*:*:*:*:*:* 13
cpe:2.3:o:vmware:esx:3.0.0:*:*:*:*:*:*:* 12
cpe:2.3:o:vmware:esx:2.0:*:*:*:*:*:*:* 11
cpe:2.3:o:vmware:esx:2.0.1:*:*:*:*:*:*:* 11
cpe:2.3:o:vmware:esx:2.1.1:*:*:*:*:*:*:* 11
cpe:2.3:o:vmware:esx:2.1.2:*:*:*:*:*:*:* 11
cpe:2.3:o:vmware:esx:2.5:*:*:*:*:*:*:* 11
cpe:2.3:o:vmware:esx:2.5.2:*:*:*:*:*:*:* 11
cpe:2.3:o:vmware:esx:2.0.2:*:*:*:*:*:*:* 9
cpe:2.3:o:vmware:esx:2.1.3:*:*:*:*:*:*:* 9
cpe:2.3:o:vmware:esx:2.1:*:*:*:*:*:*:* 9
cpe:2.3:o:vmware:esx:3.0.2:*:*:*:*:*:*:* 9
cpe:2.3:o:vmware:esx:1.5.2:patch1:*:*:*:*:*:* 8
cpe:2.3:o:vmware:esx:1.5.2:patch2:*:*:*:*:*:* 8
cpe:2.3:o:vmware:esx:1.5.2:patch3:*:*:*:*:*:* 8
cpe:2.3:o:vmware:esx:2.5.4:*:*:*:*:*:*:* 8
cpe:2.3:o:vmware:esx:2.0:build_5257:*:*:*:*:*:* 7
cpe:2.3:o:vmware:esx:2.0.1:build6403:*:*:*:*:*:* 7
cpe:2.3:o:vmware:esx:*:*:*:*:*:*:*:* 7
cpe:2.3:o:vmware:esx:2.5.3:*:*:*:*:*:*:* 6
cpe:2.3:o:vmware:esx:3.0.3:*:*:*:*:*:*:* 5
cpe:2.3:o:vmware:esx:2.5.5:*:*:*:*:*:*:* 5
cpe:2.3:o:vmware:esx:2.5.3:patch1:*:*:*:*:*:* 4
cpe:2.3:o:vmware:esx:5.0:*:*:*:*:*:*:* 1

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
3.3 2014-01-17 CVE-2014-1208

VMware Workstation 9.x before 9.0.1, VMware Player 5.x before 5.0.1, VMware Fusion 5.x before 5.0.1, VMware ESXi 4.0 through 5.1, and VMware ESX 4.0 and 4.1 allow guest OS users to cause a denial of service (VMX process disruption) by using an invalid port.

4.3 2014-01-17 CVE-2014-1207

VMware ESXi 4.0 through 5.1 and ESX 4.0 and 4.1 allow remote attackers to cause a denial of service (NULL pointer dereference) by intercepting and modifying Network File Copy (NFC) traffic.

4.4 2013-12-23 CVE-2013-5973

VMware ESXi 4.0 through 5.5 and ESX 4.0 and 4.1 allow local users to read or modify arbitrary files by leveraging the Virtual Machine Power User or Resource Pool Administrator role for a vCenter Server Add Existing Disk action with a (1) -flat, (2) -rdm, or (3) -rdmp filename.

7.9 2013-12-04 CVE-2013-3519

lgtosync.sys in VMware Workstation 9.x before 9.0.3, VMware Player 5.x before 5.0.3, VMware Fusion 5.x before 5.0.4, VMware ESXi 4.0 through 5.1, and VMware ESX 4.0 and 4.1, when a 32-bit Windows guest OS is used, allows guest OS users to gain guest OS privileges via an application that performs a crafted memory allocation.

7.1 2013-10-21 CVE-2013-5970

hostd-vmdb in VMware ESXi 4.0 through 5.0 and ESX 4.0 through 4.1 allows remote attackers to cause a denial of service (hostd-vmdb service outage) by modifying management traffic.

9.4 2013-09-10 CVE-2013-3658

Directory traversal vulnerability in VMware ESXi 4.0 through 5.0, and ESX 4.0 and 4.1, allows remote attackers to delete arbitrary host OS files via unspecified vectors.

7.5 2013-09-10 CVE-2013-3657

Buffer overflow in VMware ESXi 4.0 through 5.0, and ESX 4.0 and 4.1, allows remote attackers to execute arbitrary code or cause a denial of service via unspecified vectors.

4.3 2013-09-03 CVE-2013-1661

VMware ESXi 4.0 through 5.1, and ESX 4.0 and 4.1, does not properly implement the Network File Copy (NFC) protocol, which allows man-in-the-middle attackers to cause a denial of service (unhandled exception and application crash) by modifying the client-server data stream.

10 2013-02-15 CVE-2013-1405

VMware vCenter Server 4.0 before Update 4b and 4.1 before Update 3a, VMware VirtualCenter 2.5, VMware vSphere Client 4.0 before Update 4b and 4.1 before Update 3a, VMware VI-Client 2.5, VMware ESXi 3.5 through 4.1, and VMware ESX 3.5 through 4.1 do not properly implement the management authentication protocol, which allow remote servers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

5 2012-11-20 CVE-2012-5703

The vSphere API in VMware ESXi 4.1 and ESX 4.1 allows remote attackers to cause a denial of service (host daemon crash) via an invalid value in a (1) RetrieveProp or (2) RetrievePropEx SOAP request.

6.9 2012-09-08 CVE-2012-1666

Untrusted search path vulnerability in VMware Tools in VMware Workstation before 8.0.4, VMware Player before 4.0.4, VMware Fusion before 4.1.2, VMware View before 5.1, and VMware ESX 4.1 before U3 and 5.0 before P03 allows local users to gain privileges via a Trojan horse tpfc.dll file in the current working directory.

7.8 2012-06-14 CVE-2012-3289

VMware Workstation 8.x before 8.0.4, VMware Player 4.x before 4.0.4, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 allow remote attackers to cause a denial of service (guest OS crash) via crafted traffic from a remote virtual device.

9.3 2012-06-14 CVE-2012-3288

VMware Workstation 7.x before 7.1.6 and 8.x before 8.0.4, VMware Player 3.x before 3.1.6 and 4.x before 4.0.4, VMware Fusion 4.x before 4.1.3, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 allow user-assisted remote attackers to execute arbitrary code on the host OS or cause a denial of service (memory corruption) on the host OS via a crafted Checkpoint file.

9 2012-05-04 CVE-2012-2450

VMware Workstation 8.x before 8.0.3, VMware Player 4.x before 4.0.3, VMware Fusion 4.x before 4.1.2, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 do not properly register SCSI devices, which allows guest OS users to cause a denial of service (invalid write operation and VMX process crash) or possibly execute arbitrary code on the host OS by leveraging administrative privileges on the guest OS.

9 2012-05-04 CVE-2012-2449

VMware Workstation 8.x before 8.0.3, VMware Player 4.x before 4.0.3, VMware Fusion 4.x through 4.1.2, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 do not properly configure the virtual floppy device, which allows guest OS users to cause a denial of service (out-of-bounds write operation and VMX process crash) or possibly execute arbitrary code on the host OS by leveraging administrative privileges on the guest OS.

7.5 2012-05-04 CVE-2012-2448

VMware ESXi 3.5 through 5.0 and ESX 3.5 through 4.1 allow remote attackers to execute arbitrary code or cause a denial of service (memory overwrite) via NFS traffic.

9 2012-05-04 CVE-2012-1517

The VMX process in VMware ESXi 4.1 and ESX 4.1 does not properly handle RPC commands, which allows guest OS users to cause a denial of service (memory overwrite and process crash) or possibly execute arbitrary code on the host OS via vectors involving function pointers.

9.9 2012-05-04 CVE-2012-1516

The VMX process in VMware ESXi 3.5 through 4.1 and ESX 3.5 through 4.1 does not properly handle RPC commands, which allows guest OS users to cause a denial of service (memory overwrite and process crash) or possibly execute arbitrary code on the host OS via vectors involving data pointers.

8.3 2012-04-17 CVE-2012-1518

VMware Workstation 8.x before 8.0.2, VMware Player 4.x before 4.0.2, VMware Fusion 4.x before 4.1.2, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 use an incorrect ACL for the VMware Tools folder, which allows guest OS users to gain guest OS privileges via unspecified vectors.

8.3 2012-04-02 CVE-2012-1515

VMware ESXi 3.5, 4.0, and 4.1 and ESX 3.5, 4.0, and 4.1 do not properly implement port-based I/O operations, which allows guest OS users to gain guest OS privileges by overwriting memory locations in a read-only memory block associated with the Virtual DOS Machine.

7.5 2011-05-26 CVE-2010-4251

The socket implementation in net/core/sock.c in the Linux kernel before 2.6.34 does not properly manage a backlog of received packets, which allows remote attackers to cause a denial of service (memory consumption) by sending a large amount of network traffic, as demonstrated by netperf UDP tests.

7.9 2011-01-18 CVE-2010-4263

The igb_receive_skb function in drivers/net/igb/igb_main.c in the Intel Gigabit Ethernet (aka igb) subsystem in the Linux kernel before 2.6.34, when Single Root I/O Virtualization (SR-IOV) and promiscuous mode are enabled but no VLANs are registered, allows remote attackers to cause a denial of service (NULL pointer dereference and panic) and possibly have unspecified other impact via a VLAN tagged frame.

7.2 2008-12-08 CVE-2008-4917

Unspecified vulnerability in VMware Workstation 5.5.8 and earlier, and 6.0.5 and earlier 6.x versions; VMware Player 1.0.8 and earlier, and 2.0.5 and earlier 2.x versions; VMware Server 1.0.9 and earlier; VMware ESXi 3.5; and VMware ESX 3.0.2 through 3.5 allows guest OS users to have an unknown impact by sending the virtual hardware a request that triggers an arbitrary physical-memory write operation, leading to memory corruption.

6.9 2008-11-10 CVE-2008-4915

The CPU hardware emulation in VMware Workstation 6.0.5 and earlier and 5.5.8 and earlier; Player 2.0.x through 2.0.5 and 1.0.x through 1.0.8; ACE 2.0.x through 2.0.5 and earlier, and 1.0.x through 1.0.7; Server 1.0.x through 1.0.7; ESX 2.5.4 through 3.5; and ESXi 3.5, when running 32-bit and 64-bit guest operating systems, does not properly handle the Trap flag, which allows authenticated guest OS users to gain privileges on the guest OS.

9.3 2008-11-10 CVE-2008-4281

Directory traversal vulnerability in VMWare ESXi 3.5 before ESXe350-200810401-O-UG and ESX 3.5 before ESX350-200810201-UG allows administrators with the Datastore.FileManagement privilege to gain privileges via unknown vectors.

CWE : Common Weakness Enumeration

%idName
26% (8) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
20% (6) CWE-264 Permissions, Privileges, and Access Controls
16% (5) CWE-20 Improper Input Validation
6% (2) CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path ...
3% (1) CWE-476 NULL Pointer Dereference
3% (1) CWE-400 Uncontrolled Resource Consumption ('Resource Exhaustion')
3% (1) CWE-399 Resource Management Errors
3% (1) CWE-287 Improper Authentication
3% (1) CWE-255 Credentials Management
3% (1) CWE-191 Integer Underflow (Wrap or Wraparound)
3% (1) CWE-189 Numeric Errors
3% (1) CWE-94 Failure to Control Generation of Code ('Code Injection')
3% (1) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')

Oval Markup Language : Definitions

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalID Name
oval:org.mitre.oval:def:5463 VMware ESX server double free vulnerability may let remote users execute arbi...
oval:org.mitre.oval:def:5552 VMware ESX Multiple Code Execution and Denial of Service Vulnerabilities
oval:org.mitre.oval:def:5688 VMware Tools Input Validation Flaw in Windows Guest OS Lets Local Users Gain ...
oval:org.mitre.oval:def:5358 VMware Tools Input Validation Flaw in Windows Guest OS Lets Local Users Gain ...
oval:org.mitre.oval:def:5583 VMware Unsafe Library Path in vmware-authd Lets Local Users Gain Elevated Pri...
oval:org.mitre.oval:def:4768 VMware Unsafe Library Path in vmware-authd Lets Local Users Gain Elevated Pri...
oval:org.mitre.oval:def:5647 VMware Buffer Overflows in VIX API Let Local Users Execute Arbitrary Code
oval:org.mitre.oval:def:5081 VMware Buffer Overflows in VIX API Let Local Users Execute Arbitrary Code
oval:org.mitre.oval:def:5929 ESX 2.5.4 through 3.5 allows authenticated guest OS users to gain additional ...
oval:org.mitre.oval:def:6425 VMware ESX Administrative Directory Traversal Bug May Allow Administrators to...
oval:org.mitre.oval:def:6309 VMware CPU Hardware Emulation Bug Lets Local Users Gain Elevated Privileges
oval:org.mitre.oval:def:6246 VMware ESX Virtual Hardware Memory Access Bug Lets Local Users Gain Elevated ...
oval:org.mitre.oval:def:19965 VMware ESX third party updates for Service Console packages glibc and dhcp
oval:org.mitre.oval:def:20421 VMware ESX third party updates for Service Console packages glibc and dhcp
oval:org.mitre.oval:def:20625 VMware ESXi and ESX address several security issues
oval:org.mitre.oval:def:17110 VMware ROM Overwrite Privilege Escalation
oval:org.mitre.oval:def:15209 BIOS ROM Corruption Vulnerability (CVE-2012-1515)
oval:org.mitre.oval:def:20681 VMware hosted products and ESXi/ESX patches address privilege escalation
oval:org.mitre.oval:def:16745 VMware hosted products address privilege escalation
oval:org.mitre.oval:def:20601 VMware Workstation, Player, ESXi and ESX patches address critical security is...
oval:org.mitre.oval:def:16810 VMware host memory overwrite vulnerability (data pointers)
oval:org.mitre.oval:def:20501 VMware Workstation, Player, ESXi and ESX patches address critical security is...
oval:org.mitre.oval:def:17231 VMware host memory overwrite vulnerability (function pointers)
oval:org.mitre.oval:def:20172 VMware Workstation, Player, ESXi and ESX patches address critical security is...
oval:org.mitre.oval:def:16863 VMware Workstation, Player patches address security issues

Open Source Vulnerability Database (OSVDB)

id Description
71660 Linux Kernel net/core/sock.c Networking Subsystem Packet Handling Backlog Rem...
70483 Linux Kernel igb Subsystem drivers/net/igb/igb_main.c igb_receive_skb Functio...
52704 VMware Multiple Products Unspecified Virtual Hardware Request Memory Corruption
49947 VMware ESX / ESXi Datastore.FileManagement Unspecified Traversal Privilege Es...
49795 VMware Multiple Products CPU Hardware Emulation Trap Flag Handling Guest OS U...
49090 VMware Multiple Products 64-bit Guest OS CPU Hardware Emulation Cross-OS Priv...
46205 VMware Multiple Products HGFS.sys user-mode METHOD_NEITHER IOCTLs Local Privi...
46204 VMware Multiple Products vmware-authd Search Path Subversion Local Privilege ...
46203 VMware Multiple Products VIX API Unspecified VM Host Arbitrary Code Execution
40094 VMware Multiple Products DHCP Server Packet Handling Multiple Remote Overflows
40093 VMware Multiple Products DHCP Server Remote Memory Corruption Arbitrary Code ...
40083 OpenPegasus Management Server PAM Authentication Unspecified Remote Overflow
35268 VMware ESX Server Double-free Unspecified Issue
35267 VMware ESX Server Unspecified Overflow
27697 VMware ESX Server setUsr Operation CSRF
27696 VMware ESX Server Web Server Log Cleartext Password Disclosure
27695 VMware ESX Server Management Interface Session Cookie Password Encryption Wea...
27418 VMware vmware-config.pl SSL Key File Permission Weakness
22119 VMware ESX Server Management Interface Unspecified XSS
21585 VMware ESX Server Unspecified Local Privilege Escalation
21584 VMware ESX Server Multiple Command Unprivileged Local DoS

OpenVAS Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2012-11-16 Name : VMSA-2012-0016: VMware security updates for vSphere API and ESX Service Console
File : nvt/gb_VMSA-2012-0016.nasl
2012-10-03 Name : Gentoo Security Advisory GLSA 201209-25 (vmware-server vmware-player vmware-w...
File : nvt/glsa_201209_25.nasl
2012-07-30 Name : CentOS Update for kernel CESA-2011:0303 centos5 x86_64
File : nvt/gb_CESA-2011_0303_kernel_centos5_x86_64.nasl
2012-06-15 Name : VMSA-2012-0011 VMware Workstation, Player, Fusion, ESXi and ESX patches addre...
File : nvt/gb_VMSA-2012-0011.nasl
2012-06-13 Name : Microsoft Windows Kernel Privilege Elevation Vulnerabilities (2711167)
File : nvt/secpod_ms12-042.nasl
2012-06-06 Name : RedHat Update for Red Hat Enterprise Linux 6.1 kernel RHSA-2011:0542-01
File : nvt/gb_RHSA-2011_0542-01_Red_Hat_Enterprise_Linux_6.1_kernel.nasl
2012-06-05 Name : RedHat Update for kernel RHSA-2011:0007-01
File : nvt/gb_RHSA-2011_0007-01_kernel.nasl
2012-05-03 Name : VMSA-2012-0009 VMware Workstation, Player, ESXi and ESX patches address criti...
File : nvt/gb_VMSA-2012-0009.nasl
2012-04-13 Name : VMSA-2012-0007 VMware hosted products and ESX patches address privilege escal...
File : nvt/gb_VMSA-2012-0007.nasl
2012-04-02 Name : VMSA-2012-0006 VMware ESXi and ESX address several security issues
File : nvt/gb_VMSA-2012-0006.nasl
2012-03-16 Name : VMSA-2011-0012.3 VMware ESXi and ESX updates to third party libraries and ESX...
File : nvt/gb_VMSA-2011-0012.nasl
2011-09-30 Name : Ubuntu Update for linux USN-1218-1
File : nvt/gb_ubuntu_USN_1218_1.nasl
2011-09-30 Name : Ubuntu Update for linux-ec2 USN-1216-1
File : nvt/gb_ubuntu_USN_1216_1.nasl
2011-09-16 Name : Ubuntu Update for linux-mvl-dove USN-1208-1
File : nvt/gb_ubuntu_USN_1208_1.nasl
2011-09-16 Name : Ubuntu Update for linux-fsl-imx51 USN-1204-1
File : nvt/gb_ubuntu_USN_1204_1.nasl
2011-09-16 Name : Ubuntu Update for linux-mvl-dove USN-1203-1
File : nvt/gb_ubuntu_USN_1203_1.nasl
2011-08-09 Name : CentOS Update for kernel CESA-2011:0303 centos5 i386
File : nvt/gb_CESA-2011_0303_kernel_centos5_i386.nasl
2011-07-18 Name : Ubuntu Update for linux-mvl-dove USN-1159-1
File : nvt/gb_ubuntu_USN_1159_1.nasl
2011-07-08 Name : Ubuntu Update for linux-mvl-dove USN-1162-1
File : nvt/gb_ubuntu_USN_1162_1.nasl
2011-06-06 Name : Ubuntu Update for linux USN-1141-1
File : nvt/gb_ubuntu_USN_1141_1.nasl
2011-05-06 Name : SuSE Update for kernel SUSE-SA:2011:020
File : nvt/gb_suse_2011_020.nasl
2011-03-07 Name : RedHat Update for kernel RHSA-2011:0303-01
File : nvt/gb_RHSA-2011_0303-01_kernel.nasl
2011-01-14 Name : RedHat Update for Red Hat Enterprise Linux 5.6 kernel RHSA-2011:0017-01
File : nvt/gb_RHSA-2011_0017-01_Red_Hat_Enterprise_Linux_5.6_kernel.nasl
2009-03-23 Name : Ubuntu Update for linux-restricted-modules-2.6.17/20, vmware-player-kernel-2...
File : nvt/gb_ubuntu_USN_543_1.nasl
2008-12-15 Name : VMware Products Trap Flag In-Guest Privilege Escalation Vulnerability (Linux)
File : nvt/gb_vmware_prdts_inguest_prv_esc_vuln_lin.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2014-B-0010 Multiple Vulnerabilities in VMware ESXi 5.1
Severity: Category I - VMSKEY: V0043881
2014-B-0009 Multiple Vulnerabilities in VMware ESX 4.1 and ESXi 4.1
Severity: Category I - VMSKEY: V0043880
2014-B-0008 Multiple Vulnerabilities in VMware ESX 4.0 and ESXi 4.0
Severity: Category I - VMSKEY: V0043879
2014-A-0019 Multiple Vulnerabilities in VMware Fusion
Severity: Category I - VMSKEY: V0043844
2013-A-0222 Multiple Vulnerabilties in VMware Workstation
Severity: Category II - VMSKEY: V0042383
2013-A-0221 Multiple Vulnerabilties in VMware Player
Severity: Category II - VMSKEY: V0042382
2013-A-0218 VMware ESX/ESXi 4.1 Denial of Service Vulnerability
Severity: Category I - VMSKEY: V0042309
2013-A-0205 VMware ESXi 5.0 Denial of Service Vulnerability
Severity: Category I - VMSKEY: V0041367
2013-A-0204 VMware ESX/ESXi 4.0 Denial of Service Vulnerability
Severity: Category I - VMSKEY: V0041366
2013-B-0098 VMware ESXi 5.1 Remote Denial of Service Vulnerability
Severity: Category I - VMSKEY: V0040211
2013-B-0095 VMware ESX 4.0 and ESXi 4.0 Remote Denial of Service Vulnerability
Severity: Category I - VMSKEY: V0040209
2013-B-0096 VMware ESX 4.1 and ESXi 4.1 Remote Denial of Service Vulnerability
Severity: Category I - VMSKEY: V0040208
2013-B-0012 VMware vCenter 4.1 Server and vSphere 4.1 Client Memory Corruption Vulnerability
Severity: Category II - VMSKEY: V0036789
2013-A-0031 Multiple Security Vulnerabilities in VMware ESX 4.1 and ESXi 4.1
Severity: Category I - VMSKEY: V0036787
2012-A-0189 Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity: Category I - VMSKEY: V0035032
2012-A-0100 Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity: Category I - VMSKEY: V0032847
2012-A-0099 Multiple Vulnerabilities in VMware ESXi 4.0 and ESX 4.0
Severity: Category I - VMSKEY: V0032846
2012-A-0098 Multiple Vulnerabilities in VMware ESXi 3.5 and ESX 3.5
Severity: Category I - VMSKEY: V0032845
2012-A-0075 Multiple Vulnerabilities in VMware Fusion
Severity: Category I - VMSKEY: V0032174
2012-A-0073 Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity: Category I - VMSKEY: V0032171
2012-A-0072 Multiple Vulnerabilities in VMware ESXi 4.0 and ESX 4.0
Severity: Category I - VMSKEY: V0032167
2012-A-0071 Multiple Vulnerabilities in VMware ESXi 3.5 and ESX 3.5
Severity: Category I - VMSKEY: V0032165
2012-A-0056 Multiple Vulnerabilities in VMWare ESX 4.0 and ESXi 4.0
Severity: Category I - VMSKEY: V0031979
2012-A-0055 VMWare ESX 3.5 and ESXi 3.5 Privilege Escalation Vulnerability
Severity: Category I - VMSKEY: V0031978
2011-A-0147 Multiple Vulnerabilities in VMware ESX and ESXi
Severity: Category I - VMSKEY: V0030545

Snort® IPS/IDS

Date Description
2014-11-16 VMWare vSphere API SOAP request RetrieveProperties remote denial of service a...
RuleID : 31297 - Type : SERVER-WEBAPP - Revision : 3
2014-01-10 PcVue SVUIGrd.ocx ActiveX function call access
RuleID : 27112 - Type : BROWSER-PLUGINS - Revision : 5
2014-01-10 PcVue SVUIGrd.ocx ActiveX clsid access
RuleID : 27111 - Type : BROWSER-PLUGINS - Revision : 5

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2016-03-04 Name: The remote VMware ESX / ESXi host is missing a security-related patch.
File: vmware_VMSA-2011-0012_remote.nasl - Type: ACT_GATHER_INFO
2016-03-04 Name: The remote VMware ESX / ESXi host is missing a security-related patch.
File: vmware_esx_VMSA-2013-0001_remote.nasl - Type: ACT_GATHER_INFO
2016-03-04 Name: The remote VMware ESX / ESXi host is missing a security-related patch.
File: vmware_esx_VMSA-2013-0011_remote.nasl - Type: ACT_GATHER_INFO
2016-03-04 Name: The remote VMware ESX / ESXi host is missing a security-related patch.
File: vmware_esx_VMSA-2013-0012_remote.nasl - Type: ACT_GATHER_INFO
2016-03-04 Name: The remote VMware ESX / ESXi host is missing a security-related patch.
File: vmware_esx_VMSA-2013-0014_remote.nasl - Type: ACT_GATHER_INFO
2016-03-04 Name: The remote VMware ESX / ESXi host is missing a security-related patch.
File: vmware_esx_VMSA-2013-0016_remote.nasl - Type: ACT_GATHER_INFO
2016-03-03 Name: The remote VMware ESXi / ESX host is missing a security-related patch.
File: vmware_VMSA-2012-0006_remote.nasl - Type: ACT_GATHER_INFO
2016-03-03 Name: The remote VMware ESXi / ESX host is missing a security-related patch.
File: vmware_VMSA-2012-0007_remote.nasl - Type: ACT_GATHER_INFO
2016-02-29 Name: The remote VMware ESX / ESXi host is missing a security-related patch.
File: vmware_VMSA-2012-0009_remote.nasl - Type: ACT_GATHER_INFO
2016-02-29 Name: The remote VMware ESX / ESXi host is missing a security-related patch.
File: vmware_VMSA-2012-0011_remote.nasl - Type: ACT_GATHER_INFO
2016-02-29 Name: The remote VMware ESX / ESXi host is missing a security-related patch.
File: vmware_VMSA-2012-0016_remote.nasl - Type: ACT_GATHER_INFO
2015-12-30 Name: The remote VMware ESX / ESXi host is missing a security-related patch.
File: vmware_VMSA-2014-0001_remote.nasl - Type: ACT_GATHER_INFO
2014-06-13 Name: The remote openSUSE host is missing a security update.
File: suse_11_3_kernel-110414.nasl - Type: ACT_GATHER_INFO
2014-01-20 Name: The remote host has a virtualization application that is affected by a denial...
File: macosx_fusion_5_0_1.nasl - Type: ACT_GATHER_INFO
2014-01-20 Name: The remote VMware ESXi 5.1 host is affected by multiple vulnerabilities.
File: vmware_esxi_5_1_build_1483097_remote.nasl - Type: ACT_GATHER_INFO
2014-01-20 Name: The remote host has a virtualization application that is affected by a denial...
File: vmware_player_dos_vmsa_2014_0001.nasl - Type: ACT_GATHER_INFO
2014-01-20 Name: The remote host has a virtualization application that is affected by a denial...
File: vmware_player_linux_5_0_1.nasl - Type: ACT_GATHER_INFO
2014-01-20 Name: The remote host has a virtualization application that is affected by a denial...
File: vmware_workstation_dos_vmsa_2014_0001.nasl - Type: ACT_GATHER_INFO
2014-01-20 Name: The remote host has a virtualization application that is affected by a denial...
File: vmware_workstation_linux_9_0_1.nasl - Type: ACT_GATHER_INFO
2014-01-17 Name: The remote VMware ESXi / ESX host is missing a security-related patch.
File: vmware_VMSA-2014-0001.nasl - Type: ACT_GATHER_INFO
2013-12-31 Name: The remote VMware ESXi 5.1 host is affected by a privilege escalation vulnera...
File: vmware_esxi_5_1_build_1312874_remote.nasl - Type: ACT_GATHER_INFO
2013-12-31 Name: The remote VMware ESXi 5.5 host is affected by a privilege escalation vulnera...
File: vmware_esxi_5_5_build_1474526_remote.nasl - Type: ACT_GATHER_INFO
2013-12-23 Name: The remote VMware ESXi / ESX host is missing a security-related patch.
File: vmware_VMSA-2013-0016.nasl - Type: ACT_GATHER_INFO
2013-12-05 Name: The remote host has a virtualization application that is affected by a privil...
File: macosx_fusion_5_0_4.nasl - Type: ACT_GATHER_INFO
2013-12-05 Name: The remote host contains software with a known, local privilege escalation vu...
File: vmware_player_priv_esc_vmsa_2013_0014.nasl - Type: ACT_GATHER_INFO