Skip to main content

Horizon Client

24 CVEs product

Monthly

CVE-2023-34038 MEDIUM This Month

VMware Horizon Server contains an information disclosure vulnerability. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure VMware Horizon Client
NVD
CVSS 3.1
5.3
EPSS
0.4%
CVE-2023-34037 MEDIUM This Month

VMware Horizon Server contains a HTTP request smuggling vulnerability. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure VMware Request Smuggling Horizon Client
NVD
CVSS 3.1
5.3
EPSS
0.4%
CVE-2021-21989 MEDIUM PATCH This Month

VMware Workstation (16.x prior to 16.1.2) and Horizon Client for Windows (5.x prior to 5.5.2) contain out-of-bounds read vulnerability in the Cortado ThinPrint component (TTC Parser). Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity.

Buffer Overflow Microsoft Information Disclosure VMware Workstation +1
NVD
CVSS 3.1
6.5
EPSS
0.5%
CVE-2021-21988 MEDIUM PATCH This Month

VMware Workstation (16.x prior to 16.1.2) and Horizon Client for Windows (5.x prior to 5.5.2) contain out-of-bounds read vulnerability in the Cortado ThinPrint component (JPEG2000 Parser). Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity.

Buffer Overflow Microsoft Information Disclosure VMware Workstation +1
NVD
CVSS 3.1
6.5
EPSS
0.5%
CVE-2021-21987 MEDIUM PATCH This Month

VMware Workstation (16.x prior to 16.1.2) and Horizon Client for Windows (5.x prior to 5.5.2) contain out-of-bounds read vulnerability in the Cortado ThinPrint component (TTC Parser). Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity.

Buffer Overflow Microsoft Information Disclosure VMware Workstation +1
NVD
CVSS 3.1
6.5
EPSS
0.6%
CVE-2020-3998 MEDIUM PATCH This Month

VMware Horizon Client for Windows (5.x prior to 5.5.0) contains an information disclosure vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Microsoft VMware Horizon Client
NVD
CVSS 3.1
6.5
EPSS
1.3%
CVE-2020-3991 HIGH PATCH This Week

VMware Horizon Client for Windows (5.x before 5.5.0) contains a denial-of-service vulnerability due to a file system access control issue during install time. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity.

Information Disclosure Microsoft VMware Horizon Client
NVD
CVSS 3.1
7.1
EPSS
0.3%
CVE-2020-3990 MEDIUM This Month

VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an information disclosure vulnerability due to an integer overflow issue in Cortado ThinPrint component. Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow VMware Microsoft Information Disclosure Horizon Client +2
NVD
CVSS 3.1
6.5
EPSS
0.3%
CVE-2020-3989 LOW Monitor

VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain a denial of service vulnerability due to an out-of-bounds write issue in Cortado ThinPrint component. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Microsoft Buffer Overflow Memory Corruption VMware +3
NVD
CVSS 3.1
3.3
EPSS
0.3%
CVE-2020-3988 MEDIUM This Month

VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (JPEG2000 parser). Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow VMware Microsoft Information Disclosure Horizon Client +2
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2020-3987 MEDIUM This Month

VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (EMR STRETCHDIBITS parser). Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow VMware Microsoft Information Disclosure Horizon Client +2
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2020-3986 MEDIUM This Month

VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (EMF Parser). Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow VMware Microsoft Information Disclosure Horizon Client +2
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2020-3974 HIGH PATCH This Week

VMware Fusion (11.x before 11.5.5), VMware Remote Console for Mac (11.x and prior before 11.2.0 ) and Horizon Client for Mac (5.x and prior before 5.4.3) contain a privilege escalation vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation VMware Fusion Horizon Client Remote Console
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2020-3961 HIGH This Week

VMware Horizon Client for Windows (prior to 5.4.3) contains a privilege escalation vulnerability due to folder permission configuration and unsafe loading of libraries. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft VMware Horizon Client
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2020-3957 HIGH This Week

VMware Fusion (11.x before 11.5.5), VMware Remote Console for Mac (11.x and prior) and VMware Horizon Client for Mac (5.x and prior) contain a local privilege escalation vulnerability due to a. Rated high severity (CVSS 7.0). No vendor patch available.

Privilege Escalation VMware Fusion Horizon Client Remote Console
NVD
CVSS 3.1
7.0
EPSS
0.2%
CVE-2020-3951 LOW Monitor

VMware Workstation (15.x before 15.5.2) and Horizon Client for Windows (5.x and prior before 5.4.0) contain a denial-of-service vulnerability due to a heap-overflow issue in Cortado Thinprint. Rated low severity (CVSS 3.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Microsoft Memory Corruption VMware Horizon Client +1
NVD
CVSS 3.1
3.8
EPSS
0.3%
CVE-2020-3950 HIGH POC KEV THREAT Act Now

VMware Fusion (11.x before 11.5.2), VMware Remote Console for Mac (11.x and prior before 11.0.1) and Horizon Client for Mac (5.x and prior before 5.4.0) contain a privilege escalation vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation VMware Fusion Horizon Client Remote Console
NVD Exploit-DB
CVSS 3.1
7.8
EPSS
7.3%
CVE-2018-6970 MEDIUM PATCH This Month

VMware Horizon 6 (6.x.x before 6.2.7), Horizon 7 (7.x.x before 7.5.1), and Horizon Client (4.x.x and prior before 4.8.1) contain an out-of-bounds read vulnerability in the Message Framework library. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Microsoft Information Disclosure Buffer Overflow VMware Horizon Client +1
NVD
CVSS 3.0
6.5
EPSS
1.8%
CVE-2018-6964 HIGH This Week

VMware Horizon Client for Linux (4.x before 4.8.0 and prior) contains a local privilege escalation vulnerability due to insecure usage of SUID binary. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation VMware Horizon Client
NVD
CVSS 3.0
7.8
EPSS
0.4%
CVE-2015-2340 MEDIUM PATCH This Month

TPInt.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity.

Denial Of Service VMware Microsoft Horizon Client Horizon View Client +3
NVD
CVSS 2.0
6.1
EPSS
0.1%
CVE-2015-2339 MEDIUM PATCH This Month

TPview.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity.

Denial Of Service VMware Microsoft Horizon Client Horizon View Client +3
NVD
CVSS 2.0
6.1
EPSS
0.1%
CVE-2015-2338 MEDIUM PATCH This Month

TPview.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity.

Denial Of Service VMware Microsoft Horizon Client Horizon View Client +3
NVD
CVSS 2.0
6.1
EPSS
0.1%
CVE-2015-2337 MEDIUM This Month

TPInt.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode. Rated medium severity (CVSS 5.8), this vulnerability is low attack complexity. No vendor patch available.

RCE VMware Microsoft Fusion Player +3
NVD
CVSS 2.0
5.8
EPSS
0.1%
CVE-2015-2336 MEDIUM PATCH This Month

TPView.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x. Rated medium severity (CVSS 5.8), this vulnerability is low attack complexity.

RCE VMware Microsoft Fusion Player +3
NVD
CVSS 2.0
5.8
EPSS
0.1%
EPSS 0% CVSS 5.3
MEDIUM This Month

VMware Horizon Server contains an information disclosure vulnerability. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure VMware Horizon Client
NVD
EPSS 0% CVSS 5.3
MEDIUM This Month

VMware Horizon Server contains a HTTP request smuggling vulnerability. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure VMware Request Smuggling +1
NVD
EPSS 0% CVSS 6.5
MEDIUM PATCH This Month

VMware Workstation (16.x prior to 16.1.2) and Horizon Client for Windows (5.x prior to 5.5.2) contain out-of-bounds read vulnerability in the Cortado ThinPrint component (TTC Parser). Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity.

Buffer Overflow Microsoft Information Disclosure +3
NVD
EPSS 0% CVSS 6.5
MEDIUM PATCH This Month

VMware Workstation (16.x prior to 16.1.2) and Horizon Client for Windows (5.x prior to 5.5.2) contain out-of-bounds read vulnerability in the Cortado ThinPrint component (JPEG2000 Parser). Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity.

Buffer Overflow Microsoft Information Disclosure +3
NVD
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

VMware Workstation (16.x prior to 16.1.2) and Horizon Client for Windows (5.x prior to 5.5.2) contain out-of-bounds read vulnerability in the Cortado ThinPrint component (TTC Parser). Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity.

Buffer Overflow Microsoft Information Disclosure +3
NVD
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

VMware Horizon Client for Windows (5.x prior to 5.5.0) contains an information disclosure vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Microsoft VMware +1
NVD
EPSS 0% CVSS 7.1
HIGH PATCH This Week

VMware Horizon Client for Windows (5.x before 5.5.0) contains a denial-of-service vulnerability due to a file system access control issue during install time. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity.

Information Disclosure Microsoft VMware +1
NVD
EPSS 0% CVSS 6.5
MEDIUM This Month

VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an information disclosure vulnerability due to an integer overflow issue in Cortado ThinPrint component. Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow VMware Microsoft +4
NVD
EPSS 0% CVSS 3.3
LOW Monitor

VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain a denial of service vulnerability due to an out-of-bounds write issue in Cortado ThinPrint component. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Microsoft Buffer Overflow +5
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (JPEG2000 parser). Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow VMware Microsoft +4
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (EMR STRETCHDIBITS parser). Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow VMware Microsoft +4
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (EMF Parser). Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow VMware Microsoft +4
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

VMware Fusion (11.x before 11.5.5), VMware Remote Console for Mac (11.x and prior before 11.2.0 ) and Horizon Client for Mac (5.x and prior before 5.4.3) contain a privilege escalation vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation VMware Fusion +2
NVD
EPSS 0% CVSS 7.8
HIGH This Week

VMware Horizon Client for Windows (prior to 5.4.3) contains a privilege escalation vulnerability due to folder permission configuration and unsafe loading of libraries. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft VMware +1
NVD
EPSS 0% CVSS 7.0
HIGH This Week

VMware Fusion (11.x before 11.5.5), VMware Remote Console for Mac (11.x and prior) and VMware Horizon Client for Mac (5.x and prior) contain a local privilege escalation vulnerability due to a. Rated high severity (CVSS 7.0). No vendor patch available.

Privilege Escalation VMware Fusion +2
NVD
EPSS 0% CVSS 3.8
LOW Monitor

VMware Workstation (15.x before 15.5.2) and Horizon Client for Windows (5.x and prior before 5.4.0) contain a denial-of-service vulnerability due to a heap-overflow issue in Cortado Thinprint. Rated low severity (CVSS 3.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Microsoft Memory Corruption +3
NVD
EPSS 7% CVSS 7.8
HIGH POC KEV THREAT Act Now

VMware Fusion (11.x before 11.5.2), VMware Remote Console for Mac (11.x and prior before 11.0.1) and Horizon Client for Mac (5.x and prior before 5.4.0) contain a privilege escalation vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation VMware Fusion +2
NVD Exploit-DB
EPSS 2% CVSS 6.5
MEDIUM PATCH This Month

VMware Horizon 6 (6.x.x before 6.2.7), Horizon 7 (7.x.x before 7.5.1), and Horizon Client (4.x.x and prior before 4.8.1) contain an out-of-bounds read vulnerability in the Message Framework library. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Microsoft Information Disclosure Buffer Overflow +3
NVD
EPSS 0% CVSS 7.8
HIGH This Week

VMware Horizon Client for Linux (4.x before 4.8.0 and prior) contains a local privilege escalation vulnerability due to insecure usage of SUID binary. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation VMware Horizon Client
NVD
EPSS 0% CVSS 6.1
MEDIUM PATCH This Month

TPInt.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity.

Denial Of Service VMware Microsoft +5
NVD
EPSS 0% CVSS 6.1
MEDIUM PATCH This Month

TPview.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity.

Denial Of Service VMware Microsoft +5
NVD
EPSS 0% CVSS 6.1
MEDIUM PATCH This Month

TPview.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity.

Denial Of Service VMware Microsoft +5
NVD
EPSS 0% CVSS 5.8
MEDIUM This Month

TPInt.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode. Rated medium severity (CVSS 5.8), this vulnerability is low attack complexity. No vendor patch available.

RCE VMware Microsoft +5
NVD
EPSS 0% CVSS 5.8
MEDIUM PATCH This Month

TPView.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x. Rated medium severity (CVSS 5.8), this vulnerability is low attack complexity.

RCE VMware Microsoft +5
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy