CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-22942

The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling 'file' pointer.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.14

EPSS Ranking 93.9%

CVSS Severity

CVSS v3 Score 7.8

References

https://github.com/vmware/photon/wiki/Security-Update-3.0-356
https://github.com/vmware/photon/wiki/Security-Update-4.0-148
https://www.openwall.com/lists/oss-security/2022/01/27/4
https://github.com/vmware/photon/wiki/Security-Update-3.0-356
https://github.com/vmware/photon/wiki/Security-Update-4.0-148
https://www.openwall.com/lists/oss-security/2022/01/27/4

Products affected by CVE-2022-22942

Vmware » Photon Os » Version: 3.0

cpe:2.3:o:vmware:photon_os:3.0
Vmware » Photon Os » Version: 4.0

cpe:2.3:o:vmware:photon_os:4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-22942

Products

Pricing

Contact Us