Vmware Vcenter Server vulnerabilities

CVE-2023-34048 [CRITICAL] CWE-787 CVE-2023-34048: vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC pro vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger an out-of-bounds write potentially leading to remote code execution.

CVE-2023-34056 [MEDIUM] CWE-922 CVE-2023-34056: vCenter Server contains a partial information disclosure vulnerability. A malicious actor with non-a vCenter Server contains a partial information disclosure vulnerability. A malicious actor with non-administrative privileges to vCenter Server may leverage this issue to access unauthorized data.

CVE-2023-20894 [CRITICAL] CWE-787 CVE-2023-20894: The VMware vCenter Server contains an out-of-bounds write vulnerability in the implementation of the The VMware vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger an out-of-bound write by sending a specially crafted packet leading to memory corruption.

CVE-2023-20892 [CRITICAL] CWE-787 CVE-2023-20892: The vCenter Server contains a heap overflow vulnerability due to the usage of uninitialized memory i The vCenter Server contains a heap overflow vulnerability due to the usage of uninitialized memory in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may exploit heap-overflow vulnerability to execute arbitrary code on the underlying operating system that hosts vCenter Server.

CVE-2023-20893 [CRITICAL] CWE-416 CVE-2023-20893: The VMware vCenter Server contains a use-after-free vulnerability in the implementation of the DCERP The VMware vCenter Server contains a use-after-free vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may exploit this issue to execute arbitrary code on the underlying operating system that hosts vCenter Server.

CVE-2023-20895 [CRITICAL] CWE-787 CVE-2023-20895: The VMware vCenter Server contains a memory corruption vulnerability in the implementation of the DC The VMware vCenter Server contains a memory corruption vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger a memory corruption vulnerability which may bypass authentication.

CVE-2023-20896 [HIGH] CWE-125 CVE-2023-20896: The VMware vCenter Server contains an out-of-bounds read vulnerability in the implementation of the The VMware vCenter Server contains an out-of-bounds read vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger an out-of-bounds read by sending a specially crafted packet leading to denial-of-service of certain services (vmcad, vmdird, and vmafdd).

CVE-2019-5531 [MEDIUM] CWE-613 CVE-2019-5531: VMware vSphere ESXi (6.7 prior to ESXi670-201810101-SG, 6.5 prior to ESXi650-201811102-SG, and 6.0 p VMware vSphere ESXi (6.7 prior to ESXi670-201810101-SG, 6.5 prior to ESXi650-201811102-SG, and 6.0 prior to ESXi600-201807103-SG) and VMware vCenter Server (6.7 prior to 6.7 U1b, 6.5 prior to 6.5 U2b, and 6.0 prior to 6.0 U3j) contain an information disclosure vulnerability in clients arising from insufficient session expiration. An attacker with phys

CVE-2017-4933 [HIGH] VMware ESXi, vCenter Server Appliance, Workstation and Fusion updates address multiple security vulnerabilities VMSA-2017-0021: VMware ESXi, vCenter Server Appliance, Workstation and Fusion updates address multiple security vulnerabilities a. ESXi, Workstation, and Fusion stack overflow via authenticated VNC session VMware ESXi, Workstation, and Fusion contain a vulnerability that could allow an authenticated VNC session to cause a stack overflow via a specific set of VNC p

CVE-2017-4927 [HIGH] VMware vCenter Server update resolves LDAP DoS, SSRF and CRLF injection issues VMSA-2017-0017: VMware vCenter Server update resolves LDAP DoS, SSRF and CRLF injection issues a. VMware vCenter Server LDAP Denial of Service (DoS). VMware vCenter Server doesn't correctly handle specially crafted LDAP network packets which may allow for remote DoS. VMware would like to thank Honggang Ren of Fortinet's FortiGuard Labs for reporting this issue to us. The Common Vulnerabilities an

CVE-2017-4924 [HIGH] VMware ESXi, vCenter Server, Fusion and Workstation updates resolve multiple security vulnerabilities VMSA-2017-0015: VMware ESXi, vCenter Server, Fusion and Workstation updates resolve multiple security vulnerabilities VMware ESXi, vCenter Server, Fusion and Workstation updates resolve multiple security vulnerabilities. 2. Relevant Products VMware ESXi (ESXi) VMware vCenter Server VMware Workstation Pro / Player (Workstation) VMware Fusion Pro, Fusion (Fusion)3. Problem De

CVE-2017-4919 [CRITICAL] CWE-306 CVE-2017-4919: VMware vCenter Server 5.5, 6.0, 6.5 allows vSphere users with certain, limited vSphere privileges to VMware vCenter Server 5.5, 6.0, 6.5 allows vSphere users with certain, limited vSphere privileges to use the VIX API to access Guest Operating Systems without the need to authenticate.

CVE-2015-5191 [MEDIUM] VMware vCenter Server and Tools updates resolve multiple security vulnerabilities VMSA-2017-0013: VMware vCenter Server and Tools updates resolve multiple security vulnerabilities a. Insecure library loading through LD_LIBRARY_PATH VMware vCenter Server contains an insecure library loading issue that occurs due to the use of LD_LIBRARY_PATH variable in an unsafe manner. Successful exploitation of this issue may allow unprivileged host users to load a shared library that m

CVE-2016-7458 [MEDIUM] VMware product updates address information disclosure vulnerabilities VMSA-2016-0022: VMware product updates address information disclosure vulnerabilities a. vSphere Client XML External Entity vulnerability The vSphere Client contains an XML External Entity (XXE) vulnerability. This issue can lead to information disclosure if a vSphere Client user is tricked into connecting to a malicious instance of vCenter Server or ESXi. There are no known workarounds for this issue.

CVE-2016-5330 [HIGH] VMware product updates address multiple security issues VMSA-2016-0010: VMware product updates address multiple security issues a. DLL hijacking issue in Windows-based VMware Tools A DLL hijacking vulnerability is present in the VMware Tools "Shared Folders" (HGFS) feature running on Microsoft Windows. Exploitation of this issue may lead to arbitrary code execution with the privileges of the victim. In order to exploit this issue, the attacker would need write access to a n

CVE-2015-6931 [MEDIUM] VMware vCenter Server updates address an important reflected cross-site scripting issue VMSA-2016-0009: VMware vCenter Server updates address an important reflected cross-site scripting issue a. Important vCenter Server reflected cross-site scripting issue The vSphere Web Client contains a reflected cross-site scripting vulnerability due to a lack of input sanitization. An attacker can exploit this issue by tricking a victim into clicking a malicious link. VMware would li

CVE-2016-2078 [MEDIUM] VMware vCenter Server updates address an important cross-site scripting issue VMSA-2016-0006: VMware vCenter Server updates address an important cross-site scripting issue a. Reflected cross-site scripting issue through flash parameter injection The vSphere Web Client contains a reflected cross-site scripting vulnerability that occurs through flash parameter injection. An attacker can exploit this issue by tricking a victim into clicking a malicious link. VMware would lik

CVE-2016-2076 [HIGH] VMware product updates address a critical security issue in the VMware Client Integration Plugin VMSA-2016-0004: VMware product updates address a critical security issue in the VMware Client Integration Plugin a. Critical VMware Client Integration Plugin incorrect session handling The VMware Client Integration Plugin does not handle session content in a safe way. This may allow for a Man in the Middle attack or Web session hijacking in case the user of the vSphere Web Clien

CVE-2015-6934 [HIGH] VMware product updates address a critical deserialization vulnerability VMSA-2015-0009: VMware product updates address a critical deserialization vulnerability 3.a Commons-collections deserialization vulnerability A deserialization vulnerability involving Apache Commons-collections and a specially constructed chain of classes exists. Successful exploitation could result in remote code execution, with the permissions of the application using the Commons-collections library.

CVE-2015-1047 [HIGH] VMware vCenter and ESXi updates address critical security issues. VMSA-2015-0007: VMware vCenter and ESXi updates address critical security issues. a. VMware ESXi OpenSLP Remote Code Execution VMware ESXi contains a double free flaw in OpenSLP's SLPDProcessMessage() function. Exploitation of this issue may allow an unauthenticated attacker to remotely execute code on the ESXi host. VMware would like to thank Qinghao Tang of QIHU 360 for reporting this issue to us. The Commo