Lucene search

Kaspersky LabKLA12441

HistoryJan 18, 2022 - 12:00 a.m.

KLA12441 DoS vulnerability in VMware Workstation

2022-01-1800:00:00

Kaspersky Lab

threats.kaspersky.com

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

6.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

6.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

A denial of service vulnerability was found in VMware Workstation. Malicious users can exploit this vulnerability to cause denial of service.

Original advisories

VMSA-2022-0002

Related products

VMware-Workstation

VMware-Player

CVE list

CVE-2022-22938 high

Solution

Update to the latest version

Download VMware Workstation

Impacts

Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.

Affected Products

VMware Workstation 16.x earlier than 16.2.2

References

statistics.securelist.com/

threats.kaspersky.com/en/product/VMware-Player/

threats.kaspersky.com/en/product/VMware-Workstation/

www.vmware.com/security/advisories/VMSA-2022-0002.html

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

6.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

6.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

Related for KLA12441