CVE-2021-22045

Description from NVD

VMware ESXi (7.0, 6.7 before ESXi670-202111101-SG and 6.5 before ESXi650-202110101-SG), VMware Workstation (16.2.0) and VMware Fusion (12.2.0) contains a heap-overflow vulnerability in CD-ROM device emulation. A malicious actor with access to a virtual machine with CD-ROM device emulation may be able to exploit this vulnerability in conjunction with other issues to execute code on the hypervisor from a virtual machine.

Information Acquisition Date:2022-01-31T16:40Z
CVSS 2.0: 6.9 MEDIUM CVSS 3.x: 7.8 HIGH

▼ CVSS3 Vec CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

▼ CVSS2 Vec AV:L/AC:M/Au:N/C:C/I:C/A:C

NVD References

 https://www.vmware.com/security/advisories/VMSA-2022-0001.html
     source:MISC
     tags:Vendor Advisory    
 http://packetstormsecurity.com/files/165440/VMware-Security-Advisory-2022-0001.html
     source:MISC
     tags:Third Party Advisory    VDB Entry    
 https://www.zerodayinitiative.com/advisories/ZDI-22-003/
     source:MISC
     tags:Third Party Advisory    VDB Entry    

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag: VMware(1 tweets) vSphere(1 tweets)

List of frequently cited URLs

URLNum of Times Referred to
https://cvetrends.com51
https://thehackernews.com/2022/01/vmware-patches-important-...6
https://securityaffairs.co/wordpress/126352/security/vmware...5
https://securityonline.info/cve-2021-22045-vmware-workstati...4
https://bit.ly/34w55LB3
https://ift.tt/3JNZq3m3
https://www.vmware.com/security/advisories/VMSA-2022-0001.html3

Information from Twitter

User URL Info Source Date
VMware_Japan http://ow.ly/WSut50J2Apw Source VMware_Japan     1523951063359008768 2022/05/10
VMware_Japan https://twitter.com/VMware_Japan/status/1523951063359008768... Source VMware_Japan     1523951063359008768 2022/05/10

List of frequently cited URLs

URLNum of Times Referred to
cvetrends.com51
thehackernews.com6
securityaffairs.co5
securityonline.info4
bit.ly3
ift.tt3
www.vmware.com3

Information from Twitter

User URL Info Source
VMware_Japan ow.ly Show Tweet
VMware_Japan twitter.com Show Tweet
GitHub Search Results: Up to 10
NameURL
No Data
GitHub Search Results: Up to 10
NameURL
No Data
2022/05/10 Score : 0
Added Har-sia Database : 2022/01/05
Last Modified : 2022/05/10
Highest Scored Date : 2022/01/06
Highest Score : 56