Horizon

DATE	CVE	VULNERABILITY TITLE	RISK
2022-04-11	CVE-2022-22962	Link Following vulnerability in VMWare Horizon VMware Horizon Agent for Linux (prior to 22.x) contains a local privilege escalation as a user is able to change the default shared folder location due to a vulnerable symbolic link. local low complexity vmware CWE-59	7.8
2022-04-11	CVE-2022-22964	Unspecified vulnerability in VMWare Horizon VMware Horizon Agent for Linux (prior to 22.x) contains a local privilege escalation that allows a user to escalate to root due to a vulnerable configuration file. local low complexity vmware	7.8
2022-01-28	CVE-2022-22938	Unspecified vulnerability in VMWare Horizon and Workstation VMware Workstation (16.x prior to 16.2.2) and Horizon Client for Windows (5.x prior to 5.5.3) contains a denial-of-service vulnerability in the Cortado ThinPrint component. local low complexity vmware	6.5
2020-10-23	CVE-2020-3997	Cross-site Scripting vulnerability in VMWare Horizon VMware Horizon Server (7.x prior to 7.10.3 or 7.13.0) contains a Cross Site Scripting (XSS) vulnerability. network low complexity vmware CWE-79	5.4
2019-10-10	CVE-2019-5527	Use After Free vulnerability in VMWare products ESXi, Workstation, Fusion, VMRC and Horizon Client contain a use-after-free vulnerability in the virtual sound device. local low complexity vmware CWE-416	8.8
2019-04-09	CVE-2019-5513	Unspecified vulnerability in VMWare Horizon VMware Horizon Connection Server (7.x before 7.8, 7.5.x before 7.5.2, 6.x before 6.2.8) contains an information disclosure vulnerability. network low complexity vmware	5.3