The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling ‘file’ pointer.

Affected configurations

NVD

Node

vmwarephoton_osMatch3.0-

vmwarephoton_osMatch4.0-

References

github.com/vmware/photon/wiki/Security-Update-3.0-356

github.com/vmware/photon/wiki/Security-Update-4.0-148

www.openwall.com/lists/oss-security/2022/01/27/4

ibm 5

packetstorm 1

redhatcve 1

ubuntucve 1

cvelist 1

debiancve 1

veracode 1

prion 1

zdt 1

metasploit 1

cve 1

f5 1

openvas 33

nessus 77

mageia 2

photon 4

virtuozzo 1

rapid7blog 1

redhat 25

ubuntu 8

osv 14

rocky 2

almalinux 1

oraclelinux 6

cloudfoundry 2

centos 1

debian 3

suse 3

ibm

Security Bulletin: Publicly disclosed vulnerability from Kernel affects IBM Netezza Host Management

2022-05-26 12:33:32

Security Bulletin: Vulnerabilities in the Linux Kernel affect IBM Spectrum Copy Data Management

2022-06-09 17:51:49

Security Bulletin: IBM QRadar Network Packet Capture is using components with known vulnerabilities

2022-03-31 14:40:20

packetstorm

vmwgfx Driver File Descriptor Handling Privilege Escalation

2023-02-01 00:00:00

redhatcve

CVE-2022-22942

2022-01-28 07:41:45

ubuntucve

CVE-2022-22942

2022-01-28 00:00:00

cvelist

CVE-2022-22942

2023-12-13 08:16:34

debiancve

CVE-2022-22942

2023-12-13 09:15:33

veracode

Use After Free

2022-02-22 17:27:51

prion

Privilege escalation

2023-12-13 09:15:00

zdt

vmwgfx Driver File Descriptor Handling Privilege Escalation Exploit

2023-02-01 00:00:00

metasploit

vmwgfx Driver File Descriptor Handling Priv Esc

2023-01-17 20:30:36

cve

CVE-2022-22942

2023-12-13 09:15:33

K30914425 : Linux vulnerabilities CVE-2022-0330 and CVE-2022-22942

2022-04-19 00:00:00

openvas

Mageia: Security Advisory (MGASA-2022-0042)

2022-02-09 00:00:00

Mageia: Security Advisory (MGASA-2022-0041)

2022-02-09 00:00:00

Ubuntu: Security Advisory (USN-5295-1)

2022-02-18 00:00:00

nessus

SUSE SLES12 Security Update : kernel (Live Patch 23 for SLE 12 SP5) (SUSE-SU-2022:1278-1)

2022-04-21 00:00:00

SUSE SLES15 Security Update : kernel (Live Patch 30 for SLE 15 SP1) (SUSE-SU-2022:1593-1)

2022-05-11 00:00:00

SUSE SLES15 Security Update : kernel (Live Patch 25 for SLE 15 SP1) (SUSE-SU-2022:1212-1)

2022-04-15 00:00:00

mageia

Updated kernel-linus packages fix security vulnerabilities

2022-02-01 18:26:02

Updated kernel packages fix security vulnerabilities

2022-02-01 18:26:02

photon

Important Photon OS Security Update - PHSA-2022-0148

2022-01-26 00:00:00

Important Photon OS Security Update - PHSA-2022-4.0-0148

2022-01-28 00:00:00

Critical Photon OS Security Update - PHSA-2022-0356

2022-01-26 00:00:00

virtuozzo

[Important] [Security] Virtuozzo ReadyKernel patch 146.1 for Virtuozzo Hybrid Server 7.5

2022-08-22 00:00:00

rapid7blog

Metasploit Weekly Wrap-Up

2023-02-03 19:21:26

redhat

(RHSA-2022:0925) Important: kpatch-patch security update

2022-03-15 12:48:47

(RHSA-2022:1103) Important: kpatch-patch security update

2022-03-29 08:17:08

(RHSA-2022:1324) Important: kernel security and bug fix update

2022-04-12 13:50:29

ubuntu

Linux kernel (HWE) vulnerabilities

2022-02-18 00:00:00

Linux kernel vulnerabilities

2022-02-22 00:00:00

Linux kernel (GKE) vulnerabilities

2022-02-22 00:00:00

osv

linux-hwe-5.13 vulnerabilities

2022-02-18 00:41:45

linux, linux-aws, linux-aws-5.13, linux-azure, linux-gcp, linux-kvm, linux-oracle, linux-oracle-5.13, linux-raspi vulnerabilities

2022-02-22 07:14:53

Important: kernel-rt security and bug fix update

2022-03-10 14:37:54

rocky

kernel-rt security and bug fix update

2022-03-10 14:37:54

kernel security, bug fix, and enhancement update

2022-03-10 14:43:03

almalinux

Important: kernel security, bug fix, and enhancement update

2022-03-10 14:43:03

oraclelinux

kernel security, bug fix, and enhancement update

2022-03-11 00:00:00

kernel security and bug fix update

2022-02-23 00:00:00

Unbreakable Enterprise kernel-container security update

2022-04-11 00:00:00

cloudfoundry

USN-5294-2: Linux kernel vulnerabilities | Cloud Foundry

2022-03-11 00:00:00

USN-5298-1: Linux kernel vulnerabilities | Cloud Foundry

2022-04-21 00:00:00

centos

bpftool, kernel, perf, python security update

2022-02-25 15:41:18

debian

[SECURITY] [DSA 5092-1] linux security update

2022-03-07 12:54:12

[SECURITY] [DSA 5096-1] linux security update

2022-03-09 15:30:58

[SECURITY] [DLA 2941-1] linux-4.19 security update

2022-03-09 12:40:55

suse

Security update for the Linux Kernel (critical)

2022-02-11 00:00:00

Security update for the Linux Kernel (critical)

2022-02-10 00:00:00

Security update for the Linux Kernel (important)

2022-06-17 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

31.5%

JSON

Related for NVD:CVE-2022-22942

ibm5 packetstorm1 redhatcve1 ubuntucve1 cvelist1 debiancve1 veracode1 prion1 zdt1 metasploit1 cve1 f51 openvas33 nessus77 mageia2 photon4 virtuozzo1 rapid7blog1 redhat25 ubuntu8 osv14 rocky2 almalinux1 oraclelinux6 cloudfoundry2 centos1 debian3 suse3