CVE-2021-22042 vulnerability in VMware Products
Published on February 16, 2022
VMware ESXi contains an unauthorized access vulnerability due to VMX having access to settingsd authorization tickets. A malicious actor with privileges within the VMX process only, may be able to access settingsd service running as a high privileged user.
Products Associated with CVE-2021-22042
stack.watch emails you whenever new vulnerabilities are published in VMware Cloud Foundation or VMware ESXi. Just hit a watch button to start following.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.