Skip to main content

View

17 CVEs product

Monthly

CVE-2022-42901 HIGH This Week

Bentley MicroStation and MicroStation-based applications may be affected by out-of-bounds and stack overflow issues when opening crafted XMT files. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Information Disclosure Buffer Overflow Microstation View
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2022-42900 HIGH This Week

Bentley MicroStation and MicroStation-based applications may be affected by out-of-bounds read issues when opening crafted FBX files. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Information Disclosure Buffer Overflow Microstation View
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2022-42899 HIGH This Week

Bentley MicroStation and MicroStation-based applications may be affected by out-of-bounds read and stack overflow issues when opening crafted SKP files. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Information Disclosure Buffer Overflow Microstation View
NVD
CVSS 3.1
7.8
EPSS
0.6%
CVE-2022-35906 LOW Monitor

An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Microstation View
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2022-35905 LOW Monitor

An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Microstation View
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2022-35904 LOW Monitor

An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Microstation View
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2022-35903 LOW Monitor

An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Microstation View
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2022-35902 LOW Monitor

An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Microstation View
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2022-35901 LOW Monitor

An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Microstation View
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2022-35900 LOW Monitor

An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Microstation View
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2013-1406 HIGH POC This Week

The Virtual Machine Communication Interface (VMCI) implementation in vmci.sys in VMware Workstation 8.x before 8.0.5 and 9.x before 9.0.1 on Windows, VMware Fusion 4.1 before 4.1.4 and 5.0 before. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

VMware Information Disclosure Microsoft Workstation Fusion +3
NVD Exploit-DB
CVSS 2.0
7.2
EPSS
0.7%
CVE-2012-5978 MEDIUM This Month

Multiple directory traversal vulnerabilities in the (1) View Connection Server and (2) View Security Server in VMware View 4.x before 4.6.2 and 5.x before 5.1.2 allow remote attackers to read. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

VMware Path Traversal View
NVD
CVSS 2.0
5.0
EPSS
0.2%
CVE-2012-1666 MEDIUM POC This Month

Untrusted search path vulnerability in VMware Tools in VMware Workstation before 8.0.4, VMware Player before 4.0.4, VMware Fusion before 4.1.2, VMware View before 5.1, and VMware ESX 4.1 before U3. Rated medium severity (CVSS 6.9). Public exploit code available and no vendor patch available.

VMware Information Disclosure Workstation Player Fusion +2
NVD Exploit-DB
CVSS 2.0
6.9
EPSS
0.2%
CVE-2012-1511 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in View Manager Portal in VMware View before 4.6.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

VMware XSS View
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2012-1510 HIGH This Week

Buffer overflow in the WDDM display driver in VMware ESXi 4.0, 4.1, and 5.0; VMware ESX 4.0 and 4.1; and VMware View before 4.6.1 allows guest OS users to gain guest OS privileges via unspecified. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow VMware Esx View ESXi
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2012-1509 HIGH This Week

Buffer overflow in the XPDM display driver in VMware View before 4.6.1 allows guest OS users to gain guest OS privileges via unspecified vectors. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow VMware View
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2012-1508 HIGH This Week

The XPDM display driver in VMware ESXi 4.0, 4.1, and 5.0; VMware ESX 4.0 and 4.1; and VMware View before 4.6.1 allows guest OS users to gain guest OS privileges or cause a denial of service (NULL. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation VMware Denial Of Service Esx View +1
NVD
CVSS 2.0
7.2
EPSS
0.1%
EPSS 0% CVSS 7.8
HIGH This Week

Bentley MicroStation and MicroStation-based applications may be affected by out-of-bounds and stack overflow issues when opening crafted XMT files. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Information Disclosure Buffer Overflow +2
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Bentley MicroStation and MicroStation-based applications may be affected by out-of-bounds read issues when opening crafted FBX files. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Information Disclosure Buffer Overflow +2
NVD
EPSS 1% CVSS 7.8
HIGH This Week

Bentley MicroStation and MicroStation-based applications may be affected by out-of-bounds read and stack overflow issues when opening crafted SKP files. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Information Disclosure Buffer Overflow +2
NVD
EPSS 0% CVSS 3.3
LOW Monitor

An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Microstation +1
NVD
EPSS 0% CVSS 3.3
LOW Monitor

An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Microstation +1
NVD
EPSS 0% CVSS 3.3
LOW Monitor

An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Microstation +1
NVD
EPSS 0% CVSS 3.3
LOW Monitor

An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Microstation +1
NVD
EPSS 0% CVSS 3.3
LOW Monitor

An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Microstation +1
NVD
EPSS 0% CVSS 3.3
LOW Monitor

An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Microstation +1
NVD
EPSS 0% CVSS 3.3
LOW Monitor

An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Microstation +1
NVD
EPSS 1% CVSS 7.2
HIGH POC This Week

The Virtual Machine Communication Interface (VMCI) implementation in vmci.sys in VMware Workstation 8.x before 8.0.5 and 9.x before 9.0.1 on Windows, VMware Fusion 4.1 before 4.1.4 and 5.0 before. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

VMware Information Disclosure Microsoft +5
NVD Exploit-DB
EPSS 0% CVSS 5.0
MEDIUM This Month

Multiple directory traversal vulnerabilities in the (1) View Connection Server and (2) View Security Server in VMware View 4.x before 4.6.2 and 5.x before 5.1.2 allow remote attackers to read. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

VMware Path Traversal View
NVD
EPSS 0% CVSS 6.9
MEDIUM POC This Month

Untrusted search path vulnerability in VMware Tools in VMware Workstation before 8.0.4, VMware Player before 4.0.4, VMware Fusion before 4.1.2, VMware View before 5.1, and VMware ESX 4.1 before U3. Rated medium severity (CVSS 6.9). Public exploit code available and no vendor patch available.

VMware Information Disclosure Workstation +4
NVD Exploit-DB
EPSS 0% CVSS 4.3
MEDIUM This Month

Cross-site scripting (XSS) vulnerability in View Manager Portal in VMware View before 4.6.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

VMware XSS View
NVD
EPSS 0% CVSS 7.2
HIGH This Week

Buffer overflow in the WDDM display driver in VMware ESXi 4.0, 4.1, and 5.0; VMware ESX 4.0 and 4.1; and VMware View before 4.6.1 allows guest OS users to gain guest OS privileges via unspecified. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow VMware Esx +2
NVD
EPSS 0% CVSS 7.2
HIGH This Week

Buffer overflow in the XPDM display driver in VMware View before 4.6.1 allows guest OS users to gain guest OS privileges via unspecified vectors. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow VMware View
NVD
EPSS 0% CVSS 7.2
HIGH This Week

The XPDM display driver in VMware ESXi 4.0, 4.1, and 5.0; VMware ESX 4.0 and 4.1; and VMware View before 4.6.1 allows guest OS users to gain guest OS privileges or cause a denial of service (NULL. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation VMware Denial Of Service +3
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy