Unprotected Storage Vulnerability in VMware Workstation
CVE-2022-22983

5.9MEDIUM

Key Information:

Vendor
Vmware
Vendor
CVE Published:
10 August 2022

Summary

VMware Workstation versions prior to 16.2.4 are susceptible to a vulnerability that allows local users with limited privileges to access stored credentials. This may lead to the exposure of user passwords for remote servers connected through the application, posing a significant risk to data confidentiality and security.

Affected Version(s)

VMware Workstation VMware Workstation (16.x prior to 16.2.4)

References

CVSS V3.1

Score:
5.9
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.