4 matches found
CVE-2022-22942
CVE-2022-22942 concerns the VMware VMWGFX Linux kernel driver, enabling local privilege escalation due to a dangling file pointer in the driver that can let unprivileged users access files opened by other processes. Affected component: VMware vmwgfx/VGA driver in the kernel. Root cause/impact: lo...
CVE-2020-10713
CVE-2020-10713 affects GRUB2 prior to 2.06. The flaw allows an attacker to hijack/tamper the GRUB verification process and bypass Secure Boot, enabling arbitrary code execution during boot when a crafted grub.cfg is processed. Exploitation requires local access or access to modify boot/network se...
CVE-2021-22055
CVE-2021-22055 affects the SchedulerServer component of VMware Photon. The vulnerability allows remote attackers to inject logs via a carriage return character in the package parameter, and to insert malicious data and fake entries. The available connected Red Hat/NVD entries confirm the same des...
CVE-2016-5333
CVE-2016-5333 affects VMware Photon OS OVA 1.0 prior to the 2016-08-14 release. Root cause: a default public SSH key was left in an authorized_keys file within the Photon OS OVA build, allowing remote attackers with knowledge of the corresponding private key to SSH into affected systems. Impact: ...