CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

RedhatCVE•added 2025/05/22 8:47 p.m.•3 views

CVE-2021-22043

VMware ESXi contains a TOCTOU Time-of-check Time-of-use vulnerability that exists in the way temporary files are handled. A malicious actor with access to settingsd, may exploit this issue to escalate their privileges by writing arbitrary files...

7.5CVSS7.2AI score0.00358EPSS

Exploits0References1

Tenable Nessus•added 2022/03/01 12:0 a.m.•429 views

ESXi 6.5 / 6.7 / 7.0 Multiple Vulnerabilities (VMSA-2022-0004)

The remote VMware ESXi host is version 6.5, 6.7 or 7.0 and is affected by multiple vulnerabilities, including the following: - VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the XHCI USB controller. A malicious actor with local administrative privileges on a virtua...

7.8CVSS7.3AI score0.01005EPSS

Exploits0References6

OSV•added 2022/02/16 5:15 p.m.•1 views

CVE-2021-22043

7.5CVSS5.9AI score0.00358EPSS

Exploits0References1

NVD•added 2022/02/16 5:15 p.m.•20 views

CVE-2021-22042

VMware ESXi contains an unauthorized access vulnerability due to VMX having access to settingsd authorization tickets. A malicious actor with privileges within the VMX process only, may be able to access settingsd service running as a high privileged user...

7.8CVSS0.00249EPSS

Exploits0References1

NVD•added 2022/02/16 5:15 p.m.•20 views

CVE-2021-22043

7.5CVSS0.00358EPSS

Exploits0References1

OSV•added 2022/02/16 5:15 p.m.•1 views

CVE-2021-22042

7.8CVSS7.1AI score0.00249EPSS

Exploits0References1

Prion•added 2022/02/16 5:15 p.m.•20 views

Improper access control

4.6CVSS7.2AI score0.00249EPSS

Exploits0References1Affected Software2

Cvelist•added 2022/02/16 4:37 p.m.•22 views

CVE-2021-22042

7.4AI score0.00249EPSS

Exploits0References1

CVE•added 2022/02/16 4:37 p.m.•128 views

CVE-2021-22042

CVE-2021-22042 affects VMware ESXi: an unauthorized-access flaw where VMX process privileges can access settingsd authorization tickets, allowing a local attacker with VMX privileges to reach the settingsd service running as a high-privileged user. Reported in multiple feeds (NVD, Red Hat, Nessus...

7.8CVSS7.3AI score0.00249EPSS

Exploits0References1Affected Software2

ThreatPost•added 2022/02/16 3:59 p.m.•560 views

Critical VMware Bugs Open ESXi, Fusion & Workstation to Attackers

VMware has issued a critical security update to address issues in its ESXi, Fusion and Workstation products, including VMware Cloud Foundation versions. Exploitation could give attackers access to workloads inside organizations’ virtual environments. The bugs have a range of 5.3 to 8.4 out of 10 ...

7.8CVSS9AI score0.01005EPSS

Exploits0References7

CNNVD•added 2022/02/15 12:0 a.m.•2 views

VMWare Cloud Foundation (ESXi) 访问控制错误漏洞

Vmware VMware Cloud Foundation is an all-in-one hybrid cloud platform from Vmware. The platform includes features such as operations automation, infrastructure auto-configuration, and integrated lifecycle management. An access control error vulnerability exists in VMWare Cloud Foundation ESXi tha...

7.8CVSS7.5AI score0.00249EPSS

Exploits0References4

VMware•added 2022/02/13 12:0 a.m.•209 views

VMSA-2022-0004:VMware ESXi, Workstation, and Fusion updates address multiple security vulnerabilities

Advisory ID: VMSA-2022-0004 CVSSv3 Range: 5.3-8.4 Issue Date:2022-02-15 Updated On: 2022-02-15 Initial Advisory CVEs: CVE-2021-22040, CVE-2021-22041, CVE-2021-22042, CVE-2021-22043, CVE-2021-22050 Synopsis: VMware ESXi, Workstation, and Fusion updates address multiple security vulnerabilities...

7.8CVSS7.8AI score0.01005EPSS

Exploits0References89Affected Software4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by