Description:
VMware has published a security advisory to address multiple vulnerabilities in VMware products. The list of security updates can be found at:
- https://www.vmware.com/security/advisories/VMSA-2022-0004.html
- https://www.vmware.com/security/advisories/VMSA-2022-0005.html
Affected Systems:
- VMware ESXi
- VMware Cloud Foundation
- VMware Fusion Pro / Fusion
- VMware NSX Data Center for vSphere
- VMware Workstation Pro / Player
Impact:
Depending on the vulnerabilities being exploited, a successful exploitation of the vulnerabilities could lead to arbitrary code execution, denial of service, or elevation of privilege on the affected system.
Recommendation:
Patches for affected products are available. System administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.
More Information:
- https://www.vmware.com/security/advisories/VMSA-2022-0004.html
- https://www.vmware.com/security/advisories/VMSA-2022-0005.html
- https://www.hkcert.org/security-bulletin/vmware-products-multiple-vulnerabilities_20220216
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22040 (to CVE-2021-22043)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22050
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22945