Denial-of-Service Vulnerability in VMware Tools for Windows
CVE-2022-31693

5.5MEDIUM

Key Information:

Vendor: Vmware
Status: Tools
Vendor: CVE Published:; 7 June 2023

Summary

VMware Tools for Windows is affected by a vulnerability in the VM3DMP driver that allows a local user with malicious intent to initiate a PANIC condition. This can lead to a denial-of-service scenario in the guest operating system, impacting stability and availability. Users are encouraged to update to the latest version to mitigate potential risks.

References

https://www.vmware.com/security/advisories/VMSA-2022-0029...

https://security.netapp.com/advisory/ntap-20221223-0009/

https://security.netapp.com/advisory/ntap-20230824-0009/

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 7, 2023
Vulnerability Reserved
May 25, 2022