Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how vmware compares to other vendors in security performance

View Risk Score →

VMware Spring FrameworkStatic resource cache poisoning in Spring MVC and WebFlux

Risk 17
Severity
3.1
First published (updated )
CVE-2026-22741

VMware Spring SecurityUser Attribute Enumeration when Using DaoAuthenticationProvider

Risk 20
Severity
3.7
First published (updated )
CVE-2026-22746

maven/org.springframework:spring-webfluxServer Sent Event stream corruption

Risk 15
Severity
2.6
First published (updated )
CVE-2026-22735

VMware WorkstationVMware Workstation out-of-bound read vulnerability

Risk 15
Severity
2.7
First published (updated )
CVE-2026-22717

VMware ESXiImproper initialization for some ESXi kernel mode driver for the Intel(R) Ethernet 800-Series before…

Risk 18
Severity
3.3
First published (updated )
CVE-2025-25058
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

ubuntu/open-vm-toolsVMware Tools Authentication Bypass Vulnerability

Risk 65
Severity
3.9
Exploited
Zeroday
First published (updated )
CVE-2023-20867

VMware ESXiVMware ESXi contains a heap-overflow vulnerability. A malicious local actor with restricted privileg…

Risk 18
Severity
3.3
First published (updated )
CVE-2022-31699

VMware Spring Data RestApplications that allow HTTP PATCH access to resources exposed by Spring Data REST in versions 3.6.0…

Risk 20
Severity
3.7
First published (updated )
CVE-2022-31679

VMware Spring FrameworkIn Spring Framework versions 5.3.0 - 5.3.10, 5.2.0 - 5.2.17, and older unsupported versions, it is p…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-2034584

VMware Carbon Black CloudThe installer of the macOS Sensor for VMware Carbon Black Cloud (prior to 3.5.1) handles certain fil…

Risk 25
Severity
3.6
First published (updated )
CVE-2020-4008
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

VMware Horizon Client WindowsVMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain a denial of serv…

Risk 18
Severity
3.3
First published (updated )
CVE-2020-3989

VMware ESXiVMware Workstation Shader Bytecode Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

Risk 20
Severity
3.8
First published (updated )
CVE-2020-3970

Open VM ToolsVMware Tools for macOS (11.x.x and prior before 11.1.1) contains a denial-of-service vulnerability i…

Risk 18
Severity
3.3
First published (updated )
CVE-2020-3972

VMware ESXiVMware ESXi (6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), VMware Workstatio…

Risk 18
Severity
3.3
First published (updated )
CVE-2020-3959

VMware Horizon ClientVMware Workstation (15.x before 15.5.2) and Horizon Client for Windows (5.x and prior before 5.4.0) …

Risk 20
Severity
3.8
First published (updated )
CVE-2020-3951
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

VMware Airwatch Agent AndroidAirwatch Inbox for Android contains a vulnerability that may allow a rooted device to decrypt the lo…

Risk 20
Severity
3.8
First published (updated )
CVE-2017-4896

VMware ESXivmware-authd (aka the Authorization process) in VMware Workstation 10.x before 10.0.5, VMware Player…

Risk 19
Severity
3.3
First published (updated )
CVE-2015-1044

VMware FusionInput Validation

Risk 19
Severity
3.3
First published (updated )
CVE-2015-1043

VMware ESXiVMware Workstation 9.x before 9.0.1, VMware Player 5.x before 5.0.1, VMware Fusion 5.x before 5.0.1,…

Risk 19
Severity
3.3
First published (updated )
CVE-2014-1208

VMware Hyperic HQInfoleak

Risk 13
Severity
2.1
First published (updated )
CVE-2009-2899
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

VMware PlayerInfoleak

Risk 13
Severity
2.1
First published (updated )
CVE-2011-2146

VMware vCenterInfoleak

Risk 13
Severity
2.1
First published (updated )
CVE-2011-1788

VMware open-vm-toolsvmware-hgfsmounter in VMware Open Virtual Machine Tools (aka open-vm-tools) 8.4.2-261024 and earlier…

Risk 22
Severity
3.3
First published (updated )
CVE-2011-1681

Samba mount.cifsDan Rosenberg reported a flaw with suid mount helpers handle access to /etc/mtab [1], which could al…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-688980

VMware vCenter ServerThe vCenter Tomcat Management Application in VMware vCenter Server 4.1 before Update 1 stores log-on…

Risk 13
Severity
2.1
First published (updated )
CVE-2010-2928
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

VMware WorkstationThe installer in VMware Workstation 7.x before 7.1.2 build 301548 and VMware Player 3.x before 3.1.2…

Risk 13
Severity
2.1
First published (updated )
CVE-2010-3277

VMware VMware VirtualCenterInfoleak

Risk 13
Severity
2.1
First published (updated )
CVE-2009-0518

VMware VirtualCenterInfoleak

Risk 13
Severity
2.1
First published (updated )
CVE-2008-4278

VMware ESXInfoleak

Risk 13
Severity
2.1
First published (updated )
CVE-2008-2101

VMware VMware PlayerInput Validation

Risk 12
Severity
1.9
First published (updated )
CVE-2007-5438
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203