Vulnerability Monitor

The vendors, products, and vulnerabilities you care about
player Vendor: vmware

About This Product

player is a software product developed by vmware, a major technology provider with a global presence in enterprise and consumer markets. This product is widely deployed in production environments, making vulnerability monitoring essential for organizations relying on it. Security vulnerabilities in products of this category can affect system availability, data confidentiality, and integrity across entire networks. The significant number of reported vulnerabilities indicates this product has received substantial security scrutiny and community focus over time. Regular assessment of known vulnerabilities and timely patching are fundamental components of responsible system administration for any deployment of this software.

Vulnerability Landscape Summary

SecUtils has identified 89 known vulnerabilities affecting vmware player. This includes 2 critical-severity issues and 47 high-severity issues that warrant immediate attention. Vulnerabilities in this product have been disclosed spanning from 2005 to 2016, indicating a sustained research interest and ongoing security attention. 34 medium-severity issues and 6 low-severity issues complete the vulnerability landscape. Organizations should prioritize patching based on deployment context, asset criticality, and exploitation likelihood rather than severity alone.

Known Vulnerabilities
ID Date Published Last Modified Severity (CVSSv3) Severity (CVSSv2) Exploit Available
CVE-2005-4459 2005-12-21 2025-04-03 - 10.0 Likely
CVE-2006-3547 2006-07-13 2025-04-03 5.5 2.6 Unknown
CVE-2006-3589 2006-07-21 2025-04-03 - 3.6 Unknown
CVE-2007-0061 2007-09-21 2025-04-09 - 10.0 Likely
CVE-2007-0062 2007-09-21 2025-04-09 - 10.0 Likely
CVE-2007-0063 2007-09-21 2025-04-09 - 10.0 Likely
CVE-2007-4496 2007-09-21 2025-04-09 - 6.5 Unknown
CVE-2007-4497 2007-09-21 2025-04-09 - 5.5 Unknown
CVE-2007-5023 2007-09-21 2025-04-09 - 6.9 Unknown
CVE-2007-5617 2007-10-21 2025-04-09 - 10.0 Likely
CVE-2007-5618 2007-10-21 2025-04-09 - 7.2 Unknown
CVE-2008-0923 2008-02-26 2025-04-09 - 6.9 Unknown
CVE-2008-1340 2008-03-20 2025-04-09 - 7.1 Likely
CVE-2008-1361 2008-03-20 2025-04-09 - 6.8 Unknown
CVE-2008-1362 2008-03-20 2025-04-09 - 7.2 Unknown
CVE-2008-1363 2008-03-20 2025-04-09 - 7.2 Unknown
CVE-2008-1364 2008-03-20 2025-04-09 - 7.8 Likely
CVE-2008-1392 2008-03-20 2025-04-09 - 10.0 Likely
CVE-2007-5671 2008-06-05 2025-04-09 - 4.4 Unknown
CVE-2008-0967 2008-06-05 2025-04-09 - 6.9 Unknown
CVE-2008-2100 2008-06-05 2025-04-09 - 7.2 Unknown
CVE-2008-3691 2008-09-03 2025-04-09 - 10.0 Likely
CVE-2008-3692 2008-09-03 2025-04-09 - 10.0 Likely
CVE-2008-3693 2008-09-03 2025-04-09 - 10.0 Likely
CVE-2008-3694 2008-09-03 2025-04-09 - 10.0 Likely
CVE-2008-3695 2008-09-03 2025-04-09 - 10.0 Likely
CVE-2008-3696 2008-09-03 2025-04-09 - 10.0 Likely
CVE-2008-3698 2008-09-03 2025-04-09 - 7.2 Unknown
CVE-2008-3892 2008-09-03 2025-04-09 - 10.0 Likely
CVE-2008-4279 2008-10-06 2025-04-09 - 6.8 Unknown
CVE-2008-4915 2008-11-10 2025-04-09 - 6.9 Unknown
CVE-2008-4917 2008-12-09 2025-04-09 - 7.2 Unknown
CVE-2009-0909 2009-04-06 2025-04-09 - 9.3 Likely
CVE-2009-0910 2009-04-06 2025-04-09 - 6.8 Likely
CVE-2009-1146 2009-04-06 2025-04-09 - 4.9 Unknown
CVE-2009-1147 2009-04-06 2025-04-09 - 7.2 Unknown
CVE-2009-1244 2009-04-13 2025-04-09 - 6.8 Unknown
CVE-2009-1805 2009-06-01 2025-04-09 - 4.0 Unknown
CVE-2009-0199 2009-09-08 2025-04-09 - 9.3 Likely
CVE-2009-2628 2009-09-08 2025-04-09 - 9.3 Likely
CVE-2009-3707 2009-10-16 2025-04-09 - 5.0 Likely
CVE-2009-2267 2009-11-02 2025-04-09 - 6.9 Unknown
CVE-2009-1564 2010-04-12 2025-04-11 - 9.3 Likely
CVE-2009-1565 2010-04-12 2025-04-11 - 9.3 Likely
CVE-2009-3732 2010-04-12 2025-04-11 - 10.0 Likely
CVE-2010-1138 2010-04-12 2025-04-11 - 5.0 Likely
CVE-2010-1139 2010-04-12 2025-04-11 - 7.2 Unknown
CVE-2010-1140 2010-04-12 2025-04-11 - 6.9 Unknown
CVE-2010-1141 2010-04-12 2025-04-11 - 8.5 Unknown
CVE-2010-1142 2010-04-12 2025-04-11 - 8.5 Unknown
CVE-2009-4811 2010-04-27 2025-04-11 - 5.0 Likely
CVE-2010-1205 2010-06-30 2025-04-11 9.8 7.5 Likely
CVE-2010-2249 2010-06-30 2025-04-11 6.5 4.3 Likely
CVE-2010-3277 2010-09-28 2025-04-11 - 2.1 Unknown
CVE-2010-4294 2010-12-06 2025-04-11 - 9.3 Likely
CVE-2010-4295 2010-12-06 2025-04-11 - 6.9 Unknown
CVE-2010-4296 2010-12-06 2025-04-11 - 7.2 Unknown
CVE-2010-4297 2010-12-06 2025-04-11 - 7.2 Unknown
CVE-2011-1787 2011-06-06 2025-04-11 - 6.9 Unknown
CVE-2011-2145 2011-06-06 2025-04-11 - 6.3 Unknown
CVE-2011-2146 2011-06-06 2025-04-11 - 2.1 Unknown
CVE-2011-3868 2011-10-07 2025-04-11 - 9.3 Likely
CVE-2012-1518 2012-04-17 2025-04-11 - 8.3 Unknown
CVE-2012-2449 2012-05-04 2025-04-11 - 9.0 Likely
CVE-2012-2450 2012-05-04 2025-04-11 - 9.0 Likely
CVE-2012-3288 2012-06-14 2025-04-11 - 9.3 Likely
CVE-2012-3289 2012-06-14 2025-04-11 - 7.8 Likely
CVE-2012-1666 2012-09-08 2025-04-11 - 6.9 Unknown
CVE-2012-3569 2012-11-14 2025-04-11 - 9.3 Likely
CVE-2012-5458 2012-11-14 2025-04-11 - 8.3 Unknown
CVE-2012-5459 2012-11-14 2025-04-11 - 7.9 Unknown
CVE-2013-1662 2013-08-24 2025-04-11 - 6.9 Unknown
CVE-2013-5972 2013-11-18 2025-04-11 - 7.2 Unknown
CVE-2013-3519 2013-12-04 2025-04-11 - 7.9 Unknown
CVE-2014-1208 2014-01-17 2025-04-11 - 3.3 Unknown
CVE-2014-2384 2014-04-15 2025-04-12 - 4.9 Unknown
CVE-2014-3793 2014-05-31 2025-04-12 - 5.8 Unknown
CVE-2014-8370 2015-01-29 2025-04-12 - 6.4 Likely
CVE-2015-1043 2015-01-29 2025-04-12 - 3.3 Unknown
CVE-2015-1044 2015-01-29 2025-04-12 - 3.3 Unknown
CVE-2015-2336 2015-06-13 2025-04-12 - 5.8 Unknown
CVE-2015-2337 2015-06-13 2025-04-12 - 5.8 Unknown
CVE-2015-2338 2015-06-13 2025-04-12 - 6.1 Unknown
CVE-2015-2339 2015-06-13 2025-04-12 - 6.1 Unknown
CVE-2015-2340 2015-06-13 2025-04-12 - 6.1 Unknown
CVE-2015-2341 2015-06-13 2025-04-12 - 7.8 Likely
CVE-2015-3650 2015-07-10 2025-04-12 - 7.2 Unknown
CVE-2015-6933 2016-01-09 2025-04-12 6.3 6.5 Likely
CVE-2016-2077 2016-05-18 2025-04-12 9.8 10.0 Likely

How SecUtils Interprets Product Data

SecUtils normalizes and enriches National Vulnerability Database (NVD) records for vmware player by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and structuring the data for rapid analysis and asset correlation. For every vulnerability listed, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference information to enable organizations to prioritize patching and risk assessment efficiently. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for vulnerability management and security operations.