|
247891
|
7.0 |
HIGH
Local
|
lenovo
|
enterprise_network_operating_system
|
In Enterprise Networking Operating System (ENOS) in Lenovo and IBM RackSwitch and BladeCenter products, an authentication bypass known as "HP Backdoor" was discovered during a Lenovo security audit i…
|
CWE-287
Improper Authentication
|
CVE-2017-3765
|
2024-11-21 12:26 |
2018-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247892
|
7.1 |
HIGH
Local
|
vmware
|
workstation
horizon_view
|
VMware Workstation (14.x before 14.1.0 and 12.x) and Horizon View Client (4.x before 4.7.0) contain an out-of-bounds read vulnerability in TPView.dll. On Workstation, this issue in conjunction with o…
|
CWE-200
CWE-125
Information Exposure
Out-of-bounds Read
|
CVE-2017-4948
|
2024-11-21 12:26 |
2018-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247893
|
7.8 |
HIGH
Local
|
vmware
|
vrealize_operations_for_published_applications
vrealize_operations_for_horizon
|
The VMware V4H and V4PA desktop agents (6.x before 6.5.1) contain a privilege escalation vulnerability. Successful exploitation of this issue could result in a low privileged windows user escalating …
|
CWE-863
Incorrect Authorization
|
CVE-2017-4946
|
2024-11-21 12:26 |
2018-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247894
|
5.5 |
MEDIUM
Local
|
vmware
|
workstation
fusion
|
VMware Workstation (14.x and 12.x) and Fusion (10.x and 8.x) contain a guest access control vulnerability. This issue may allow program execution via Unity on locked Windows VMs. VMware Tools must be…
|
NVD-CWE-noinfo
|
CVE-2017-4945
|
2024-11-21 12:26 |
2018-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247895
|
7.8 |
HIGH
Local
|
vmware
|
vcenter_server
|
VMware vCenter Server Appliance (vCSA) (6.5 before 6.5 U1d) contains a local privilege escalation vulnerability via the 'showlog' plugin. Successful exploitation of this issue could result in a low p…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-4943
|
2024-11-21 12:26 |
2017-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247896
|
8.8 |
HIGH
Network
|
vmware
|
fusion
workstation
esxi
|
VMware ESXi (6.0 before ESXi600-201711101-SG, 5.5 ESXi550-201709101-SG), Workstation (12.x before 12.5.8), and Fusion (8.x before 8.5.9) contain a vulnerability that could allow an authenticated VNC …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-4941
|
2024-11-21 12:26 |
2017-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247897
|
6.1 |
MEDIUM
Network
|
vmware
|
esxi
|
The ESXi Host Client in VMware ESXi (6.5 before ESXi650-201712103-SG, 5.5 before ESXi600-201711103-SG and 5.5 before ESXi550-201709102-SG) contains a vulnerability that may allow for stored cross-sit…
|
CWE-79
Cross-site Scripting
|
CVE-2017-4940
|
2024-11-21 12:26 |
2017-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247898
|
8.8 |
HIGH
Network
|
vmware
|
workstation_pro
esxi
fusion
|
VMware ESXi (6.5 before ESXi650-201710401-BG), Workstation (12.x before 12.5.8), and Fusion (8.x before 8.5.9) contain a vulnerability that could allow an authenticated VNC session to cause a heap ov…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-4933
|
2024-11-21 12:26 |
2017-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247899
|
4.9 |
MEDIUM
Network
|
vmware
|
airwatch_console
|
VMware AirWatch Console (AWC) contains a Broken Access Control vulnerability. Successful exploitation of this issue could result in end-user device details being disclosed to an unauthorized administ…
|
NVD-CWE-noinfo
|
CVE-2017-4942
|
2024-11-21 12:26 |
2017-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247900
|
5.9 |
MEDIUM
Network
|
openssl
debian
nodejs
|
openssl
debian_linux
node.js
|
There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA…
|
CWE-200
Information Exposure
|
CVE-2017-3738
|
2024-11-21 12:26 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
