Vulnerabilities > Vmware

DATE	CVE	VULNERABILITY TITLE	RISK
2022-11-09	CVE-2022-31688	Cross-site Scripting vulnerability in VMWare Workspace ONE Assist VMware Workspace ONE Assist prior to 22.10 contains a Reflected cross-site scripting (XSS) vulnerability. network low complexity vmware CWE-79	6.1
2022-11-09	CVE-2022-31689	Session Fixation vulnerability in VMWare Workspace ONE Assist VMware Workspace ONE Assist prior to 22.10 contains a Session fixation vulnerability. network low complexity vmware CWE-384 critical	9.8
2022-11-04	CVE-2022-31691	Unspecified vulnerability in VMWare products Spring Tools 4 for Eclipse version 4.16.0 and below as well as VSCode extensions such as Spring Boot Tools, Concourse CI Pipeline Editor, Bosh Editor and Cloudfoundry Manifest YML Support version 1.39.0 and below all use Snakeyaml library for YAML editing support. network low complexity vmware critical	9.8
2022-10-31	CVE-2022-31690	Spring Security, versions 5.7 prior to 5.7.5, and 5.6 prior to 5.6.9, and older unsupported versions could be susceptible to a privilege escalation under certain conditions. network high complexity vmware netapp	8.1
2022-10-31	CVE-2022-31692	Spring Security, versions 5.7 prior to 5.7.5 and 5.6 prior to 5.6.9 could be susceptible to authorization rules bypass via forward or include dispatcher types. network low complexity vmware netapp critical	9.8
2022-10-28	CVE-2022-31678	XXE vulnerability in VMWare Cloud Foundation and NSX Data Center VMware Cloud Foundation (NSX-V) contains an XML External Entity (XXE) vulnerability. network low complexity vmware CWE-611 critical	9.1
2022-10-11	CVE-2022-31682	Unspecified vulnerability in VMWare Vrealize Operations VMware Aria Operations contains an arbitrary file read vulnerability. network low complexity vmware	4.9
2022-10-07	CVE-2022-31680	Deserialization of Untrusted Data vulnerability in VMWare Vcenter Server The vCenter Server contains an unsafe deserialisation vulnerability in the PSC (Platform services controller). network low complexity vmware CWE-502 critical	9.1
2022-10-07	CVE-2022-31681	NULL Pointer Dereference vulnerability in VMWare Esxi VMware ESXi contains a null-pointer deference vulnerability. local low complexity vmware CWE-476	6.5
2022-10-06	CVE-2022-31008	Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in VMWare Rabbitmq RabbitMQ is a multi-protocol messaging and streaming broker. network low complexity vmware CWE-335	7.5

Vulnerabilities > Vmware {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Vmware"}]}

Vulnerabilities > Vmware