cbcvebase.
CVE-2021-22042
published 2022-02-16

CVE-2021-22042: VMware ESXi contains an unauthorized access vulnerability due to VMX having access to settingsd authorization tickets. A malicious actor with privileges within…

high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
VMware ESXi contains an unauthorized access vulnerability due to VMX having access to settingsd authorization tickets. A malicious actor with privileges within the VMX process only, may be able to access settingsd service running as a high privileged user.

Affected

2 ranges
VendorProductVersion rangeFixed in
vmwarecloud_foundation>= 4.0 < 4.44.4
vmwareesxi