Lucene search
VmwareCVELIST:CVE-2022-22977HistoryMay 24, 2022 - 6:15 p.m.
CVE-2022-22977
2022-05-2418:15:38
vmware
www.cve.org
VMware Tools for Windows(12.0.0, 11.x.y and 10.x.y) contains an XML External Entity (XXE) vulnerability. A malicious actor with non-administrative local user privileges in the Windows guest OS, where VMware Tools is installed, may exploit this issue leading to a denial-of-service condition or unintended information disclosure.
CNA Affected
[
{
"product": "VMware Tools for Windows",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "VMware Tools for Windows (12.0.0, 11.x.y and 10.x.y)"
}
]
}
]Related
prion
prion
Xxe
2022-05-24 19:15:00
rapid7blog
rapid7blog
The Hidden Harm of Silent Patches
2022-06-06 16:00:00
CVE-2022-22977: VMware Guest Authentication Service LPE (FIXED)
2022-05-24 18:00:00
CVE-2022-32230: Windows SMB Denial-of-Service Vulnerability (FIXED)
2022-06-14 17:10:06
cve
cve
CVE-2022-22977
2022-05-24 19:15:09
nessus
nessus
VMware Tools 10.x / 11.x / 12.x < 12.0.5 XXE (VMSA-2022-0015)
2022-05-27 00:00:00
vmware
vmware
nvd
nvd
CVE-2022-22977
2022-05-24 19:15:09