CVE-2022-31696
published 2022-12-13CVE-2022-31696: VMware ESXi contains a memory corruption vulnerability that exists in the way it handles a network socket. A malicious actor with local access to ESXi may…
high8.8CVSS 3.1
AVLACLPRLUINSCCHIHAH
VMware ESXi contains a memory corruption vulnerability that exists in the way it handles a network socket. A malicious actor with local access to ESXi may exploit this issue to corrupt memory leading to an escape of the ESXi sandbox.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| vmware | cloud_foundation | — | — |
| vmware | cloud_foundation | — | — |
| vmware | cloud_foundation | — | — |
| vmware | cloud_foundation | — | — |
| vmware | cloud_foundation | — | — |
| vmware | cloud_foundation | — | — |
| vmware | cloud_foundation | — | — |
| vmware | cloud_foundation | >= 3.0 < 3.10 | 3.10 |
| vmware | cloud_foundation | >= 4.0 < 4.3.11 | 4.3.11 |
| vmware | esxi | — | — |
| vmware | esxi | — | — |
| vmware | esxi | — | — |