cloud foundation · threatengine.sh

Home/Product/vmware cloud foundation

Product

vmware cloud foundation

132 known vulnerabilities across versions

Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.

Sort Min CVSS Published since

>= 4.0 and < 5.2.3

VMware Aria Operations contains a privilege escalation vulnerability. A malicious actor with privileges in vCenter to access Aria

>= 4.0 and < 5.2.3

VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with privileges to create custom be

>= 4.0 and < 5.2.3

VMware Aria Operations contains a command injection vulnerability. A malicious unauthenticated actor may exploit this issue to exe

>= 4.0 and <= 5.2.2

VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. A malicious local actor with non-admi

>= 4.5 and <= 5.2.1.2

VMware NSX contains a stored Cross-Site Scripting (XSS) vulnerability in the router port due to improper input validation.

>= 4.5 and <= 5.2.1.2

VMware NSX contains a stored Cross-Site Scripting (XSS) vulnerability in the gateway firewall due to improper input validation.

>= 4.5 and <= 5.2.1.2

VMware NSX Manager UI is vulnerable to a stored Cross-Site Scripting (XSS) attack due to improper input validation.

>= 4.5 and < 4.5.2

VMware Cloud Foundation contains a missing authorisation vulnerability. A malicious actor with access to VMware Cloud Foundation

>= 4.0 and <= 5.2.1

VMware Aria automation contains a DOM based Cross-Site Scripting (XSS) vulnerability. A malicious actor may exploit this issue to

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability due to an out-of-bounds read in HGFS. A mal

VMware ESXi contains an arbitrary write vulnerability. A malicious actor with privileges within the VMX process may trigger an a

VMware ESXi, and Workstation contain a TOCTOU (Time-of-Check Time-of-Use) vulnerability that leads to an out-of-bounds write. A

>= 4.0 and <= 5.2

VMware Aria Operations contains an information disclosure vulnerability. A malicious user with non-administrative privileges may

>= 4.0 and <= 5.2

VMware Aria Operation for Logs contains a stored cross-site scripting vulnerability. A malicious actor with admin privileges to V

>= 4.0 and <= 5.2

VMware Aria Operations for Logs contains a privilege escalation vulnerability. A malicious actor with non-administrative privile

>= 4.0 and <= 5.2

VMware Aria Operations for Logs contains a stored cross-site scripting vulnerability. A malicious actor with non-administrative p

>= 4.0 and <= 5.2

VMware Aria Operations for Logs contains an information disclosure vulnerability. A malicious actor with View Only Admin permissi

>= 4.0 and <= 5.2

VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with editing access to cloud provi

>= 4.0 and <= 5.2

VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with editing access to email templ

>= 4.0 and <= 5.2

VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with editing access to views may b

>= 4.0 and <= 5.2

VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with local administrative privile

>= 4.0 and <= 5.2

VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with local administrative privilege

>= 4.0 and < 5.2

The vCenter Server contains a privilege escalation vulnerability. A malicious actor with network access to vCenter Server may tri

>= 4.0 and < 5.2

The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with n

>= 4.0 and <= 5.0

VMware Aria Automation does not apply correct input validation which allows for SQL-injection in the product. An authenticated ma

>= 4.0 and < 5.2

The vCenter Server contains a denial-of-service vulnerability. A malicious actor with network access to vCenter Server may create

>= 4.0 and < 5.2

VMware ESXi contains an out-of-bounds read vulnerability. A malicious actor with local administrative privileges on a virtual m

>= 4.0 and < 5.2

VMware ESXi contains an authentication bypass vulnerability. A malicious actor with sufficient Active Directory (AD) permissions

>= 4.0 and < 5.2

The vCenter Server contains multiple local privilege escalation vulnerabilities due to misconfiguration of sudo. An authenticated

>= 4.0 and < 5.2

vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with network

>= 4.0 and < 5.1.1

The vCenter Server contains a partial file read vulnerability. A malicious actor with administrative privileges on the vCenter ap

>= 4.0 and < 5.1.1

The vCenter Server contains an authenticated remote code execution vulnerability. A malicious actor with administrative privilege

>= 4.0 and < 5.1.1

The storage controllers on VMware ESXi, Workstation, and Fusion have out-of-bounds read/write vulnerability. A malicious actor wi

>= 4.0 and <= 5.0

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability in the UHCI USB controller. A malicious acto

>= 4.0 and <= 5.0

VMware ESXi contains an out-of-bounds write vulnerability. A malicious actor with privileges within the VMX process may trigger a

>= 4.0 and <= 5.0

VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the UHCI USB controller. A malicious actor with lo

>= 4.0 and <= 5.2

VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with administrative access to the l

Aria Automation contains a Missing Access Control vulnerability. An authenticated malicious actor may exploit this vulnerabilit

>= 4.0 and < 4.4

VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with administrative access to the l

VMware Workspace ONE Access and VMware Identity Manager contain an insecure redirect vulnerability. An unauthenticated malicious

>= 4.0 and <= 4.5

VMware Aria Operations contains a privilege escalation vulnerability. A malicious actor with administrative access to the local sy

>= 4.0 and <= 4.5

VMware Aria Operations contains a Local privilege escalation vulnerability. A malicious actor with administrative privileges in th

>= 4.0 and <= 4.5

VMware Aria Operations contains a deserialization vulnerability. A malicious actor with administrative privileges can execute arbi

>= 4.0 and <= 4.5

VMware Aria Operations contains a privilege escalation vulnerability. An authenticated malicious user with ReadOnly privileges can

>= 4.0 and <= 4.5

VMware Aria Operations for Logs contains a command injection vulnerability. A malicious actor with administrative privileges in VM

>= 4.0 and <= 4.5

VMware Aria Operations for Logs contains a deserialization vulnerability. An unauthenticated, malicious actor with network access

VMware Workspace ONE Access and Identity Manager contain a broken authentication vulnerability. VMware has evaluated the severity

VMware Workspace ONE Access and Identity Manager contain an authenticated remote code execution vulnerability. VMware has evaluate

VMware ESXi contains a heap-overflow vulnerability. A malicious local actor with restricted privileges within a sandbox process ma

The vCenter Server contains a denial-of-service vulnerability in the content library service. A malicious actor with network acces

The vCenter Server contains an information disclosure vulnerability due to the logging of credentials in plaintext. A malicious ac

>= 3.0 and < 3.10

VMware ESXi contains a memory corruption vulnerability that exists in the way it handles a network socket. A malicious actor with

VMware Cloud Foundation (NSX-V) contains an XML External Entity (XXE) vulnerability. On VCF 3.x instances with NSX-V deployed, thi

>= 4.2 and < 4.3.1.1

VMware ESXi contains a null-pointer deference vulnerability. A malicious actor with privileges within the VMX process only, may cr

>= 3.0 and <= 3.11

The vCenter Server contains a server-side request forgery (SSRF) vulnerability. A malicious actor with network access to 443 on th

VMware Workspace ONE Access and Identity Manager contain a privilege escalation vulnerability. A malicious actor with local access

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an authentication bypass vulnerability affecting loc

>= 3.0 and < 5.0

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an information disclosure vulnerability due to retur

>= 3.0 and < 5.0

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a privilege escalation vulnerability due to improper

>= 3.0 and < 5.0

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a cross site request forgery vulnerability. A malici

>= 3.0 and < 5.0

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain two remote code execution vulnerabilities (CVE-2022-

>= 3.0 and < 5.0

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain two remote code execution vulnerabilities (CVE-2022-

>= 4.0 and <= 4.3.1

VMware Workspace ONE Access and Identity Manager contain a remote code execution vulnerability due to server-side template injecti

>= 3.0 and < 3.11

The vCenter Server contains an information disclosure vulnerability due to improper permission of files. A malicious actor with no

>= 3.0 and <= 3.11

VMware NSX Edge contains a CLI shell injection vulnerability. A malicious actor with SSH access to an NSX-Edge appliance can execu

>= 3.0 and < 3.11

ESXi contains a slow HTTP POST denial-of-service vulnerability in rhttpproxy. A malicious actor with network access to ESXi may ex

>= 4.0 and < 4.4

VMware ESXi contains an unauthorized access vulnerability due to VMX having access to settingsd authorization tickets. A malicious

>= 3.0 and < 3.11

VMware ESXi, Workstation, and Fusion contain a double-fetch vulnerability in the UHCI USB controller. A malicious actor with local

>= 3.0 and < 3.11

VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the XHCI USB controller. A malicious actor with loc

>= 3.0 and <= 3.10.2.2

VMware Cloud Foundation contains an information disclosure vulnerability due to logging of credentials in plain-text within multip

>= 3.0 and <= 3.10.2.2

VMware ESXi (7.0, 6.7 before ESXi670-202111101-SG and 6.5 before ESXi650-202110101-SG), VMware Workstation (16.2.0) and VMware Fus

The vSphere Web Client (FLEX/Flash) contains an unauthorized arbitrary file read vulnerability. A malicious actor with network acc

>= 3.0 and <= 3.10.2.2

The vCenter Server contains a privilege escalation vulnerability in the IWA (Integrated Windows Authentication) authentication mec

>= 4.0.0 and <= 4.3.1

VMware vRealize Log Insight (8.x prior to 8.6) contains a CSV(Comma Separated Value) injection vulnerability in interactive analyt

>= 3.0.0 and <= 4.3.1

Releases prior to VMware vRealize Operations 8.6 contain a Server Side Request Forgery (SSRF) vulnerability.

>= 3.0 and < 3.10.2.2

The vCenter Server contains a denial-of-service vulnerability in the Analytics service. Successful exploitation of this issue may

>= 3.0 and < 3.10.2.2

The vCenter Server contains a denial-of-service vulnerability in VAPI (vCenter API) service. A malicious actor with network access

>= 4.0 and < 4.3.1

The vCenter Server contains an arbitrary file deletion vulnerability in a VMware vSphere Life-cycle Manager plug-in. A malicious a

>= 3.0 and < 5.0

The vCenter Server contains a reflected cross-site scripting vulnerability due to a lack of input sanitization. An attacker may ex

>= 3.0 and < 5.0

The vCenter Server contains multiple local privilege escalation vulnerabilities due to improper permissions of files and directori

>= 3.0 and < 5.0

The vCenter Server contains an authenticated code execution vulnerability in VAMI (Virtual Appliance Management Infrastructure). A

>= 3.0 and < 5.0

The vCenter Server contains a file path traversal vulnerability leading to information disclosure in the appliance management API.

>= 3.0 and < 5.0

The vCenter Server contains an information disclosure vulnerability due to an unauthenticated appliance management API. A maliciou

>= 3.0 and < 5.0

vCenter Server contains an unauthenticated API endpoint vulnerability in vCenter Server Content Library. A malicious actor with ne

>= 3.0 and < 5.0

The vCenter Server contains a denial-of-service vulnerability in VPXD service. A malicious actor with network access to port 443 o

>= 3.0 and < 5.0

The vCenter Server contains multiple denial-of-service vulnerabilities in VAPI (vCenter API) service. A malicious actor with netwo

>= 3.0 and < 5.0

The vCenter Server contains an information disclosure vulnerability in VAPI (vCenter API) service. A malicious actor with network

>= 3.0 and < 5.0

The vCenter Server contains a local information disclosure vulnerability in the Analytics service. An authenticated user with non-

>= 3.0 and < 5.0

The vCenter Server contains a reverse proxy bypass vulnerability due to the way the endpoints handle the URI. A malicious actor wi

>= 3.0 and < 5.0

The vCenter Server contains an arbitrary file upload vulnerability in the Analytics service. A malicious actor with network access

>= 3.0 and < 5.0

The vCenter Server contains an SSRF (Server Side Request Forgery) vulnerability due to improper validation of URLs in vCenter Serv

>= 3.0 and < 3.10.2.2

The vCenter Server contains a denial-of-service vulnerability due to improper XML entity parsing. A malicious actor with non-admin

>= 3.0 and < 3.10.2.2

The vCenter Server contains a local privilege escalation vulnerability due to the way it handles session tokens. A malicious actor

VMware Workspace ONE Access and Identity Manager, unintentionally provide a login interface on port 7443. A malicious actor with n

VMware Workspace ONE Access and Identity Manager, allow the /cfg web app and diagnostic endpoints, on port 8443, to be accessed vi

>= 4.0 and < 4.3

VMware vRealize Log Insight (8.x prior to 8.4) contains a Cross Site Scripting (XSS) vulnerability due to improper user input vali

>= 3.0 and <= 3.10.2.1

The vRealize Operations Manager API (8.x prior to 8.5) contains a Server Side Request Forgery in an end point. An unauthenticated

>= 3.0 and <= 3.10.2.1

The vRealize Operations Manager API (8.x prior to 8.5) contains a Server Side Request Forgery in an end point. An unauthenticated

>= 3.0 and <= 3.10.2.1

The vRealize Operations Manager API (8.x prior to 8.5) contains a broken access control vulnerability leading to unauthenticated A

>= 3.0 and <= 3.10.2.1

The vRealize Operations Manager API (8.x prior to 8.5) contains an arbitrary log-file read vulnerability. An unauthenticated malic

>= 3.0 and <= 3.10.2.1

The vRealize Operations Manager API (8.x prior to 8.5) has insecure object reference vulnerability. A malicious actor with adminis

>= 3.0 and <= 3.10.2.1

The vRealize Operations Manager API (8.x prior to 8.5) contains an arbitrary file read vulnerability. A malicious actor with admin

>= 3.0 and < 3.10.2

OpenSLP as used in ESXi has a denial-of-service vulnerability due a heap out-of-bounds read issue. A malicious actor with network

>= 3.0 and < 3.10.2

SFCB (Small Footprint CIM Broker) as used in ESXi has an authentication bypass vulnerability. A malicious actor with network acces

>= 3.0 and < 3.10.2.1

The vSphere Client (HTML5) contains a vulnerability in a vSphere authentication mechanism for the Virtual SAN Health Check, Site R

>= 3.0 and < 3.10.2.1

The vSphere Client (HTML5) contains a remote code execution vulnerability due to lack of input validation in the Virtual SAN Healt

Arbitrary file write vulnerability in vRealize Operations Manager API (CVE-2021-21983) prior to 8.4 may allow an authenticated mal

Server Side Request Forgery in vRealize Operations Manager API (CVE-2021-21975) prior to 8.4 may allow a malicious actor with netw

>= 3.0 and < 3.10.1.2

OpenSLP as used in ESXi (7.0 before ESXi70U1c-17325551, 6.7 before ESXi670-202102401-SG, 6.5 before ESXi650-202102101-SG) has a he

>= 3.0 and < 3.10.1.2

The vSphere Client (HTML5) contains an SSRF (Server Side Request Forgery) vulnerability due to improper validation of URLs in a vC

>= 3.0 and < 3.10.1.2

The vSphere Client (HTML5) contains a remote code execution vulnerability in a vCenter Server plugin. A malicious actor with netwo

VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector address have a command injection v

>= 3.0 and < 3.10.1.2

VMware ESXi (7.0 before ESXi70U1b-17168206, 6.7 before ESXi670-202011101-SG, 6.5 before ESXi650-202011301-SG) contains a privilege

>= 3.0 and < 3.10.1.2

VMware ESXi (7.0 before ESXi70U1b-17168206, 6.7 before ESXi670-202011101-SG, 6.5 before ESXi650-202011301-SG), Workstation (15.x b

>= 3.0 and < 3.9

In VMware ESXi (6.7 before ESXi670-201908101-SG, 6.5 before ESXi650-202007101-SG), Workstation (15.x before 15.1.0), Fusion (11.x

>= 3.0 and < 3.9

VMware vCenter Server (6.7 before 6.7u3, 6.6 before 6.5u3k) contains a session hijack vulnerability in the vCenter Server Applianc

>= 3.0 and < 3.10.1.1

VMware NSX-T (3.x before 3.0.2, 2.5.x before 2.5.2.2.0) contains a security vulnerability that exists in the way it allows a KVM h

>= 3.0 and < 3.10.1.2

OpenSLP as used in VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202010401-SG, 6.5 before ESXi650-202010401-

>= 3.0 and < 3.10.1

VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202008101-SG, 6.5 before ESXi650-202007101-SG), Workstation (1

>= 3.0 and < 3.10.1

VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202008101-SG, 6.5 before ESXi650-202007101-SG), Workstation (1

>= 3.0 and < 3.10

VMware ESXi and vCenter Server contain a partial denial of service vulnerability in their respective authentication services. VMwa

>= 3.0 and < 3.7.2

VMware ESXi (6.7 before ESXi670-201904101-SG and 6.5 before ESXi650-201907101-SG), Workstation (15.x before 15.0.2), and Fusion (1

>= 3.0 and < 3.10

VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), Workstatio

>= 3.0 and < 3.10

VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), Workstatio

>= 3.0 and < 3.10

VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), Workstatio

>= 3.0 and < 3.10

VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), Workstatio

>= 3.0 and < 3.10

VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202006401-SG and 6.5 before ESXi650-202005401-SG), Workstatio

>= 3.0 and < 3.10

VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202006401-SG and 6.5 before ESXi650-202005401-SG), Workstatio

>= 3.0 and < 3.10

VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202006401-SG and 6.5 before ESXi650-202005401-SG), Workstatio

>= 3.0 and < 3.10

VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), Workstatio

>= 3.0 and < 3.10

VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), Workstatio

Harbor API has a Broken Access Control vulnerability. The vulnerability allows project administrators to use the Harbor API to cre

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin