Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

VMware — Vulnerabilities & Security Advisories 219

Browse all 219 CVE security advisories affecting VMware. AI-powered Chinese analysis, POCs, and references for each vulnerability.

VMware operates as a leading provider of cloud computing and virtualization platforms, enabling enterprises to manage data centers and deploy software-defined infrastructure. With 219 recorded CVEs, its attack surface reflects the complexity of managing hypervisors and management interfaces. Historically, vulnerabilities have frequently involved remote code execution, cross-site scripting, and privilege escalation, often stemming from improper input validation or authentication bypasses in web-based management consoles. Notable incidents include critical flaws in vCenter Server and ESXi that allowed attackers to gain unauthorized administrative access or execute arbitrary commands on host systems. These exploits underscore the risks associated with centralized management tools, where a single compromise can impact entire virtualized environments. The high volume of vulnerabilities highlights the necessity for rigorous patch management and secure configuration practices to mitigate potential breaches in enterprise infrastructure.

Found 23 results / 219Clear Filters
Top products by VMware: Workstation ESXi VMware ESXi VMware Aria Operations SALT Spring Framework Workstation Pro/Player vCenter Server VMware vCenter Server (vCenter Server) VMware Aria Operations for Logs vRealize Automation Cloud Foundation Spring AI Airwatch Console VMware vCenter Server VMware NSX VMware Tools VMware Aria Automation Fusion VMware ESXi, Workstation, and Fusion vRealize Operations for Horizon Adapter Workstation and Fusion VMware Enhanced Authentication Plug-in (EAP) VMware Fusion Airwatch Agent VMware ESXi, Workstation, Fusion VMware Workstation VMware Horizon Agent for Linux vCenter Salt Project
CVE IDTitleCVSSSeverityPublished
CVE-2025-41239 vSockets information-disclosure vulnerability — ESXiCWE-908 7.1 High2025-07-15
CVE-2025-41238 PVSCSI heap-overflow vulnerability — ESXiCWE-787 9.3 Critical2025-07-15
CVE-2025-41236 VMXNET3 integer-overflow vulnerability — ESXiCWE-787 9.3 Critical2025-07-15
CVE-2025-41227 Denial-of-Service Vulnerability — ESXiCWE-400 5.5 Medium2025-05-20
CVE-2025-41226 Guest Operations Denial-of-Service Vulnerability — ESXiCWE-400 6.8 Medium2025-05-20
CVE-2025-22224 VMware ESXi和VMware Workstation 安全漏洞 — ESXi 9.3 Critical2025-03-04
CVE-2020-3955 VMware ESXi 跨站脚本漏洞 — ESXi 4.7 -2020-04-29
CVE-2019-5528 VMware ESXi 安全漏洞 — ESXi 5.3 -2019-07-11
CVE-2019-5517 多款VMware产品缓冲区错误漏洞 — ESXi 5.3 -2019-04-15
CVE-2019-5520 多款VMware产品缓冲区错误漏洞 — ESXi 5.9 -2019-04-15
CVE-2019-5516 多款VMware产品缓冲区错误漏洞 — ESXi 7.5 -2019-04-15
CVE-2018-6974 VMware ESXi、Workstation和Fusion 缓冲区错误漏洞 — ESXi 8.8 -2018-10-16
CVE-2018-6977 VMware ESXi、Workstation和Fusion 安全漏洞 — ESXi 7.7 -2018-10-09
CVE-2018-6972 VMware ESXi、Workstation和Fusion 安全漏洞 — ESXi 6.5 -2018-07-25
CVE-2017-4941 Vmware Workstation、ESXi和Fusion 缓冲区错误漏洞 — ESXi 8.8 -2017-12-20
CVE-2017-4940 VMware ESXi 跨站脚本漏洞 — ESXi 6.1 -2017-12-20
CVE-2017-4933 Vmware ESXi、Workstation和Fusion 缓冲区错误漏洞 — ESXi 7.5 -2017-12-20
CVE-2017-4925 多款Vmware产品安全漏洞 — ESXi 5.5 -2017-09-15
CVE-2017-4924 多款VMware产品安全漏洞 — ESXi 8.8 -2017-09-15
CVE-2017-4902 多款VMware产品SVGA 缓冲区错误漏洞 — ESXi 8.8 -2017-06-07
CVE-2017-4905 多款VMware产品信息泄露漏洞 — ESXi 5.5 -2017-06-07
CVE-2017-4904 多款VMware产品XHCI controller 缓冲区错误漏洞 — ESXi 8.4 -2017-06-07
CVE-2017-4903 多款VMware产品缓冲区错误漏洞 — ESXi 7.1 -2017-06-07

This page lists every published CVE security advisory associated with VMware. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.