vulnerability

VMware Workstation: Vulnerability (VMSA-2022-0004) (CVE-2021-22041)

Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
Feb 16, 2022
Added
Feb 24, 2022
Modified
Feb 28, 2022

Description

VMware ESXi, Workstation, and Fusion contain a double-fetch vulnerability in the UHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host.

Solution

vmware-workstation-upgrade-16_2_1
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.