Skip to main content

Horizon View

13 CVEs product

Monthly

CVE-2018-6970 MEDIUM PATCH This Month

VMware Horizon 6 (6.x.x before 6.2.7), Horizon 7 (7.x.x before 7.5.1), and Horizon Client (4.x.x and prior before 4.8.1) contain an out-of-bounds read vulnerability in the Message Framework library. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Microsoft Information Disclosure Buffer Overflow VMware Horizon Client +1
NVD
CVSS 3.0
6.5
EPSS
1.8%
CVE-2017-4937 HIGH PATCH This Week

VMware Workstation (12.x before 12.5.8) and Horizon View Client for Windows (4.x before 4.6.1) contain an out-of-bounds read vulnerability in JPEG2000 parser in the TPView.dll. Rated high severity (CVSS 7.8).

Denial Of Service Buffer Overflow Microsoft Information Disclosure VMware +2
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-4936 HIGH PATCH This Week

VMware Workstation (12.x before 12.5.8) and Horizon View Client for Windows (4.x before 4.6.1) contain an out-of-bounds read vulnerability in JPEG2000 parser in the TPView.dll. Rated high severity (CVSS 7.8).

Denial Of Service Buffer Overflow Microsoft Information Disclosure VMware +2
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-4935 HIGH PATCH This Week

VMware Workstation (12.x before 12.5.8) and Horizon View Client for Windows (4.x before 4.6.1) contain an out-of-bounds write vulnerability in JPEG2000 parser in the TPView.dll. Rated high severity (CVSS 7.8).

Denial Of Service Buffer Overflow Microsoft Memory Corruption VMware +2
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-4918 CRITICAL Act Now

VMware Horizon View Client (2.x, 3.x and 4.x prior to 4.5.0) contains a command injection vulnerability in the service startup script. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

VMware Command Injection Horizon View
NVD
CVSS 3.0
9.8
EPSS
3.0%
CVE-2017-4913 HIGH This Week

VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain an integer-overflow vulnerability in the True Type Font parser in the TPView.dll. Rated high severity (CVSS 7.8). No vendor patch available.

Integer Overflow Denial Of Service Microsoft VMware Horizon View +1
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-4912 HIGH This Week

VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain multiple out-of-bounds read vulnerabilities in TrueType Font (TTF) parser in the TPView.dll. Rated high severity (CVSS 7.8). No vendor patch available.

Denial Of Service Buffer Overflow Microsoft Information Disclosure VMware +2
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-4911 HIGH This Week

VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain multiple out-of-bounds write vulnerabilities in JPEG2000 parser in the TPView.dll. Rated high severity (CVSS 7.8). No vendor patch available.

Denial Of Service Buffer Overflow Microsoft Memory Corruption VMware +2
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-4910 HIGH This Week

VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain multiple out-of-bounds read vulnerabilities in JPEG2000 parser in the TPView.dll. Rated high severity (CVSS 7.8). No vendor patch available.

Denial Of Service Buffer Overflow Microsoft Information Disclosure VMware +2
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-4909 HIGH This Week

VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain a heap buffer-overflow vulnerability in TrueType Font (TTF) parser in the TPView.dll. Rated high severity (CVSS 7.8). No vendor patch available.

Buffer Overflow Denial Of Service Microsoft VMware Horizon View +1
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-4908 HIGH This Week

VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain multiple heap buffer-overflow vulnerabilities in JPEG2000 parser in the TPView.dll. Rated high severity (CVSS 7.8). No vendor patch available.

Buffer Overflow Denial Of Service Microsoft VMware Horizon View +1
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-4907 CRITICAL Act Now

VMware Unified Access Gateway (2.5.x, 2.7.x, 2.8.x prior to 2.8.1) and Horizon View (7.x prior to 7.1.0, 6.x prior to 6.2.4) contain a heap buffer-overflow vulnerability which may allow a remote. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow VMware Horizon View Unified Access Gateway
NVD
CVSS 3.0
9.8
EPSS
2.5%
CVE-2016-7087 MEDIUM PATCH This Month

Directory traversal vulnerability in the Connection Server in VMware Horizon View 5.x before 5.3.7, 6.x before 6.2.3, and 7.x before 7.0.1 allows remote attackers to obtain sensitive information via. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal VMware Horizon View
NVD
CVSS 3.0
5.3
EPSS
2.9%
EPSS 2% CVSS 6.5
MEDIUM PATCH This Month

VMware Horizon 6 (6.x.x before 6.2.7), Horizon 7 (7.x.x before 7.5.1), and Horizon Client (4.x.x and prior before 4.8.1) contain an out-of-bounds read vulnerability in the Message Framework library. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Microsoft Information Disclosure Buffer Overflow +3
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

VMware Workstation (12.x before 12.5.8) and Horizon View Client for Windows (4.x before 4.6.1) contain an out-of-bounds read vulnerability in JPEG2000 parser in the TPView.dll. Rated high severity (CVSS 7.8).

Denial Of Service Buffer Overflow Microsoft +4
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

VMware Workstation (12.x before 12.5.8) and Horizon View Client for Windows (4.x before 4.6.1) contain an out-of-bounds read vulnerability in JPEG2000 parser in the TPView.dll. Rated high severity (CVSS 7.8).

Denial Of Service Buffer Overflow Microsoft +4
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

VMware Workstation (12.x before 12.5.8) and Horizon View Client for Windows (4.x before 4.6.1) contain an out-of-bounds write vulnerability in JPEG2000 parser in the TPView.dll. Rated high severity (CVSS 7.8).

Denial Of Service Buffer Overflow Microsoft +4
NVD
EPSS 3% CVSS 9.8
CRITICAL Act Now

VMware Horizon View Client (2.x, 3.x and 4.x prior to 4.5.0) contains a command injection vulnerability in the service startup script. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

VMware Command Injection Horizon View
NVD
EPSS 0% CVSS 7.8
HIGH This Week

VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain an integer-overflow vulnerability in the True Type Font parser in the TPView.dll. Rated high severity (CVSS 7.8). No vendor patch available.

Integer Overflow Denial Of Service Microsoft +3
NVD
EPSS 0% CVSS 7.8
HIGH This Week

VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain multiple out-of-bounds read vulnerabilities in TrueType Font (TTF) parser in the TPView.dll. Rated high severity (CVSS 7.8). No vendor patch available.

Denial Of Service Buffer Overflow Microsoft +4
NVD
EPSS 0% CVSS 7.8
HIGH This Week

VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain multiple out-of-bounds write vulnerabilities in JPEG2000 parser in the TPView.dll. Rated high severity (CVSS 7.8). No vendor patch available.

Denial Of Service Buffer Overflow Microsoft +4
NVD
EPSS 0% CVSS 7.8
HIGH This Week

VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain multiple out-of-bounds read vulnerabilities in JPEG2000 parser in the TPView.dll. Rated high severity (CVSS 7.8). No vendor patch available.

Denial Of Service Buffer Overflow Microsoft +4
NVD
EPSS 0% CVSS 7.8
HIGH This Week

VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain a heap buffer-overflow vulnerability in TrueType Font (TTF) parser in the TPView.dll. Rated high severity (CVSS 7.8). No vendor patch available.

Buffer Overflow Denial Of Service Microsoft +3
NVD
EPSS 0% CVSS 7.8
HIGH This Week

VMware Workstation (12.x prior to 12.5.3) and Horizon View Client (4.x prior to 4.4.0) contain multiple heap buffer-overflow vulnerabilities in JPEG2000 parser in the TPView.dll. Rated high severity (CVSS 7.8). No vendor patch available.

Buffer Overflow Denial Of Service Microsoft +3
NVD
EPSS 3% CVSS 9.8
CRITICAL Act Now

VMware Unified Access Gateway (2.5.x, 2.7.x, 2.8.x prior to 2.8.1) and Horizon View (7.x prior to 7.1.0, 6.x prior to 6.2.4) contain a heap buffer-overflow vulnerability which may allow a remote. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow VMware Horizon View +1
NVD
EPSS 3% CVSS 5.3
MEDIUM PATCH This Month

Directory traversal vulnerability in the Connection Server in VMware Horizon View 5.x before 5.3.7, 6.x before 6.2.3, and 7.x before 7.0.1 allows remote attackers to obtain sensitive information via. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal VMware Horizon View
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy