Lucene search
VMwareVMSA-2022-0015HistoryMay 24, 2022 - 12:00 a.m.
VMware Tools for Windows update addresses an XML External Entity (XXE) vulnerability (CVE-2022-22977)
2022-05-2400:00:00
www.vmware.com
44
3. XML External Entity (XXE) vulnerability (CVE-2022-22977)
VMware Tools for Windows contains an XML External Entity (XXE) vulnerability. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 5.8.
| CPE | Name | Operator | Version |
|---|---|---|---|
| vmware tools for windows | lt | 12.0.5 |
References
customerconnect.vmware.com/downloads/info/slug/datacenter_cloud_infrastructure/vmware_tools/12_x
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22977
docs.vmware.com/en/VMware-Tools/12.0/rn/VMware-Tools-1205-Release-Notes.html
www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:L
Related
prion
prion
Xxe
2022-05-24 19:15:00
rapid7blog
rapid7blog
The Hidden Harm of Silent Patches
2022-06-06 16:00:00
CVE-2022-32230: Windows SMB Denial-of-Service Vulnerability (FIXED)
2022-06-14 17:10:06
CVE-2022-22977: VMware Guest Authentication Service LPE (FIXED)
2022-05-24 18:00:00
cve
cve
CVE-2022-22977
2022-05-24 19:15:09
cvelist
cvelist
CVE-2022-22977
2022-05-24 18:15:38
nessus
nessus
VMware Tools 10.x / 11.x / 12.x < 12.0.5 XXE (VMSA-2022-0015)
2022-05-27 00:00:00
nvd
nvd
CVE-2022-22977
2022-05-24 19:15:09