CVE-2021-22042

Publication date

2022-02-16 16:37:54

Family

vmware

State

PUBLISHED

Description

VMware ESXi contains an unauthorized access vulnerability due to VMX having access to settingsd authorization tickets. A malicious actor with privileges within the VMX process only, may be able to access settingsd service running as a high privileged user.