Security Advisory

CVE-2021-22042

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-02-16 16:37:54
Last updated 2024-08-03 18:30:23
Assigner vmware
State PUBLISHED

Description

VMware ESXi contains an unauthorized access vulnerability due to VMX having access to settingsd authorization tickets. A malicious actor with privileges within the VMX process only, may be able to access settingsd service running as a high privileged user.