Unprotected Storage Vulnerability in VMware Workstation
CVE-2022-22983

5.9MEDIUM

Key Information:

Vendor: Vmware
Status: Vmware Workstation
Vendor: CVE Published:; 10 August 2022

What is CVE-2022-22983?

VMware Workstation versions prior to 16.2.4 are susceptible to a vulnerability that allows local users with limited privileges to access stored credentials. This may lead to the exposure of user passwords for remote servers connected through the application, posing a significant risk to data confidentiality and security.

Affected Version(s)

VMware Workstation VMware Workstation (16.x prior to 16.2.4)

References

https://www.vmware.com/security/advisories/VMSA-2022-0023...

x_refsource_MISC

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 10, 2022
Vulnerability Reserved
Jan 10, 2022

Vmware

What is CVE-2022-22983?

Affected Version(s)

References

CVSS V3.1

Timeline