VMware Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by vmware
Vulnerability Published:
๐๏ธ Published
- Anytime
Sort By:
๐๏ธ Published Date
- Descending
Spring Cloud Gateway Server Webflux Vulnerability Exposes Sensitive Data
CVE-2025-41253VmwareSpring Cloud Gateway S...7.5HIGHUsername Enumeration Vulnerability in VMware NSX and Products
CVE-2025-41252VmwareNsx7.5HIGHWeak Password Recovery Mechanism in VMware NSX Products
CVE-2025-41251VmwareNsx8.1HIGHSMTP Header Injection Vulnerability in VMware vCenter
CVE-2025-41250VmwareVcenter8.5HIGHLocal Privilege Escalation in VMware Aria Operations and VMware Tools
CVE-2025-41244VmwareVcf Operations๐๐ฐ๐พ๐ก๐ฐ7.8HIGHImproper Authorization in VMware Tools for Windows Affects User Access Control
CVE-2025-41246VmwareTools7.6HIGHSpring Framework Authorization Vulnerability Affecting Application Security
CVE-2025-41249VmwareSpring Framework7.5HIGHAuthorization Bypass in Spring Security Affecting Method Annotations
CVE-2025-41248VmwareSpring Security7.5HIGHUnauthorized Access to Kubernetes Secrets in Bitnami Helm Charts
CVE-2025-41240VmwareBitnamicharts/appsmith10CRITICALInformation Disclosure Vulnerability in VMware ESXi and Workstation Products
CVE-2025-41239VmwareEsxi7.1HIGHHeap Overflow Vulnerability in VMware ESXi, Workstation, and Fusion Products
CVE-2025-41238VmwareEsxi9.3CRITICALInteger Underflow in VMware ESXi, Workstation and Fusion Affects Virtual Machine Security
CVE-2025-41237VmwareCloud Foundation๐พ๐ฐ9.3CRITICALInteger Overflow Vulnerability in VMware ESXi, Workstation, and Fusion Products
CVE-2025-41236VmwareEsxi๐พ๐ฐ9.3CRITICALDirectory Traversal Vulnerability in SaltStack's Salt Master Cache Directory
CVE-2024-38824VmwareSalt7.5HIGHArbitrary Event Injection Vulnerability in Salt Master by SaltStack
CVE-2025-22239VmwareSalt8.1HIGHEvent Bus Authorization Bypass in SaltStack Minion by Salt Project
CVE-2025-22236VmwareSalt8.1HIGHStored Cross-Site Scripting Vulnerability in VMware NSX Manager UI
CVE-2025-22243VmwareVmware Nsx7.5HIGHCode Injection Vulnerability in Spring Cloud Gateway by Pivotal Software
CVE-2025-41235VmwareSpring Cloud Gateway8.6HIGHAuthenticated Command-Execution Vulnerability in vCenter Server by Broadcom
CVE-2025-41225VmwareVcenter Server8.8HIGHMissing Authorization Vulnerability in VMware Cloud Foundation
CVE-2025-41231VMwareVmware Cloud Foundation7.3HIGHInformation Disclosure Vulnerability in VMware Cloud Foundation
CVE-2025-41230VmwareCloud Foundation7.5HIGHDirectory Traversal Vulnerability in VMware Cloud Foundation by VMware
CVE-2025-41229VmwareCloud Foundation8.2HIGHUnauthenticated Access in Bitnami PostgreSQL Docker Image and Helm Chart
CVE-2025-22248VmwareBitnami9.4CRITICALDOM-Based Cross-Site Scripting Vulnerability in VMware Aria Automation
CVE-2025-22249VmwareVmware Aria Automation8.2HIGHLocal Privilege Escalation Vulnerability in VMware Aria Operations
CVE-2025-22231VmwareVmware Aria Operations7.8HIGH