Lucene search

Kaspersky LabKLA15720

HistoryAug 09, 2022 - 12:00 a.m.

KLA15720 SB vulnerability in VMware Workstation

2022-08-0900:00:00

Kaspersky Lab

threats.kaspersky.com

5.9 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N

5.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.2%

JSON

Security bypass vulnerability was found in VMware Workstation. Malicious users can exploit this vulnerability to bypass security restrictions.

Original advisories

VMSA-2022-0023

Related products

VMware-Workstation

CVE list

CVE-2022-22983 high

Solution

Update to the latest version

Download VMware Workstation

Impacts

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

Affected Products

VMware Workstation earlier than 16.2.4

References

statistics.securelist.com/

threats.kaspersky.com/en/product/VMware-Workstation/

www.vmware.com/security/advisories/VMSA-2022-0023.html

5.9 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N

5.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for KLA15720