VMware Vulnerability
A high* level vulnerability related to VMware Tools for Windows have been released by VMware.
If exploited, this vulnerability is likely to cause non-administrative local user privileges in the Windows guest OS, where VMware Tools is installed. It also may exploit this issue leading to a denial-of-service condition or unintended information disclosure.
Affected Systems
- VMware Tools for Windows
IoC’s
-
Recommended Solution(s)
The vulnerability is fixed on version 12.0.5. To remediate CVE-2022-22977 upgrade the Vmware Tools to version 12.0.5 or higher.
It is highly recommended that the users implement the recommended solutions specified by VMware in the following link.
https://www.vmware.com/security/advisories/VMSA-2022-0015.htmlCVE / CWE
CVE-2022-22977
Related Website(s)
- https://nvd.nist.gov/vuln/detail/CVE-2022-22977
- https://www.vmware.com/security/advisories/VMSA-2022-0015.html
* Vulnerabilities with a CVSS 3.1 score between 7.0 and 8.9 are evaluated to be “high” whereas vulnerabilities with a CVSS 3.1 score between 9.0 and 10.0 are evaluated to be “critical”.
Current Security Vulnerability Reports
İSTANBUL
+90 216 504 53 32
Aydınevler Mahallesi,İsmet İnönü Cadddesi,Küçükyalı Ofis Park A Blok,No:20/1 Maltepe İstanbul
ANKARA
+90 312 235 44 51
VULNERABILITY NEWSLETTER
You can register to our newsletter on the home page to be instantly informed about security vulnerabilities.
© 2021 Barikat Cyber Security All rights reserved.