Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how vmware compares to other vendors in security performance

View Risk Score →

Software

vmware vcenter
11
vmware vcenter server and cloud foundation
11
vmware cloud foundation
8
vmware esxi
8
vmware esxi and horizon daas
7
vmware telco cloud platform
7
vmware telco cloud infrastructure
5
vmware fusion
4
vmware vrealize suite lifecycle manager
4
vmware
3
vmware aria operations
3
vmware tools
3
vmware workspace one access and identity manager
3
vmware workspace one launcher
3
vmware application remote collector
2
vmware esx
2
vmware vcenter server
2
vmware vcenter server appliance
2
vmware vrealize automation
2
vmware vrealize operations
2
vmware vsphere
2
vmware workspace one access
2
vmware workstation
2
vmware workstation and esxi
2
vmware cloud foundation operations
1
vmware esxi and workstation
1
vmware esxi, workstation, and fusion
1
vmware horizon
1
vmware horizon daas
1
vmware identity manager connector
1
vmware nsx sd-wan
1
vmware open vm tools
1
vmware open-vm-tools
1
vmware remote console plug-in
1
vmware sd-wan edge firmware
1
vmware spring framework
1
vmware tanzu spring cloud configuration server
1
vmware velocloud orchestrator
1
vmware vrealize network insight
1
vmware vrealize operations manager api
1
vmware workspace one uem console
1

BleepingComputerMicrosoft Exchange, Windows 11 hacked on second day of Pwn2Own

Exploited
Zeroday
First published (updated )
News
BleepingComputer

SUSE Linux Enterprise ServerLinux Kernel Incorrect Resource Transfer Between Spheres Vulnerability

Risk 91
Severity
7.8
Exploited
Trending
Year
First published (updated )
CVE-2026-31431

BleepingComputerCISA flags VMware Aria Operations RCE flaw as exploited in attacks

Exploited
First published (updated )
News
BleepingComputer

Broadcom VMware Aria OperationsBroadcom VMware Aria Operations Command Injection Vulnerability

Risk 92
Severity
8.1
Exploited
First published (updated )
CVE-2026-22719

BleepingComputerCISA warns of Chinese "BrickStorm" malware attacks on VMware servers

Exploited
First published (updated )
News
BleepingComputer
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

VMware ToolsBroadcom VMware Aria Operations and VMware Tools Privilege Defined with Unsafe Actions Vulnerability

Risk 91
Severity
7.8
Exploited
First published (updated )
CVE-2025-41244

VMware ESXiVMware ESXi and vCenter Server Reflected Cross Site Scripting (XSS) Vulnerability

Risk 65
Severity
4.3
Exploited
First published (updated )
CVE-2025-41228

BleepingComputerHackers earn $1,078,750 for 28 zero-days at Pwn2Own Berlin

Exploited
Zeroday
First published (updated )
News
BleepingComputer

VMware VMware Tools for WindowsAuthentication bypass vulnerability

Risk 91
Severity
7.8
Exploited
Zeroday
First published (updated )
CVE-2025-22230

BleepingComputerOver 37,000 VMware ESXi servers vulnerable to ongoing attacks

Exploited
Zeroday
First published (updated )
News
BleepingComputer
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

The RegisterUnknown attackers exploit VMware hypervisor-hijack holes

Exploited
Zeroday
First published (updated )
News
The Register

BleepingComputerBroadcom fixes three VMware zero-days exploited in attacks

Exploited
Zeroday
First published (updated )
News
BleepingComputer

VMware ESXiVMware ESXi Arbitrary Write Vulnerability

Risk 93
Severity
8.2
Exploited
Zeroday
First published (updated )
CVE-2025-22225

VMware ESXiVMware ESXi and Workstation TOCTOU Race Condition Vulnerability

Risk 97
Severity
9.3
Exploited
Zeroday
First published (updated )
CVE-2025-22224

VMware ESXiVMware ESXi, Workstation, and Fusion Information Disclosure Vulnerability

Risk 65
Severity
7.1
Exploited
Zeroday
First published (updated )
CVE-2025-22226
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

The RegisterCISA's KEV list informs ransomware attacks, paper suggests

Exploited
Zeroday
First published (updated )
News
The Register

VMware vCenter ServerVMware vCenter Server Privilege Escalation Vulnerability

Risk 99
Severity
9.8
Exploited
Zeroday
First published (updated )
CVE-2024-38813

VMware vCenter ServerVMware vCenter Server Heap-Based Buffer Overflow Vulnerability

Risk 99
Severity
9.8
Exploited
Zeroday
First published (updated )
CVE-2024-38812

VMware ESXiVMware ESXi Authentication Bypass Vulnerability

Risk 89
Severity
7.2
Exploited
Zeroday
First published (updated )
CVE-2024-37085

VMware vCenter ServerBroadcom VMware vCenter Server Out-of-bounds Write Vulnerability

Risk 99
Severity
9.8
Exploited
First published (updated )
CVE-2024-37079
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Qualcomm Multiple ChipsetsUse After Free in DSP Services

Risk 91
Severity
7.8
Exploited
Zeroday
First published (updated )
CVE-2023-33063

Qualcomm Multiple ChipsetsUse of Out-of-range Pointer Offset in Graphics

Risk 94
Severity
8.4
Exploited
Zeroday
First published (updated )
CVE-2023-33106

Qualcomm Multiple ChipsetsInteger Overflow or Wraparound in Graphics Linux

Risk 94
Severity
8.4
Exploited
Zeroday
First published (updated )
CVE-2023-33107

VMware vCenter ServerVMware vCenter Server Out-of-Bounds Write Vulnerability

Risk 99
Severity
9.8
Exploited
Zeroday
First published (updated )
CVE-2023-34048

VMware Aria Operations for NetworksVmware Aria Operations for Networks Command Injection Vulnerability

Risk 99
Severity
9.8
Exploited
First published (updated )
CVE-2023-20887
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

ubuntu/open-vm-toolsVMware Tools Authentication Bypass Vulnerability

Risk 65
Severity
3.9
Exploited
Zeroday
First published (updated )
CVE-2023-20867

SUSE Linux Enterprise ServerService Location Protocol (SLP) Denial-of-Service Vulnerability

Risk 65
Severity
7.5
Exploited
First published (updated )
CVE-2023-29552

VMware Identity ManagerVMware Multiple Products Privilege Escalation Vulnerability

Risk 83
Severity
7.8
Exploited
First published (updated )
CVE-2022-22960

VMware Identity ManagerVMware Workspace ONE Access and Identity Manager Server-Side Template Injection Vulnerability

Risk 100
Severity
10
Exploited
First published (updated )
CVE-2022-22954

Oracle Communications Cloud Native Core Network Function Cloud Native EnvironmentVMware Tanzu Spring Cloud Function Remote Code Execution Vulnerability

Risk 99
Severity
9.8
Exploited
First published (updated )
CVE-2022-22963
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203