Vulnerabilities > CVE-2022-21793 - Unspecified vulnerability in VMWare I40En and Ixgben

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

vmware

NVD

Published: 2022-08-18

Updated: 2022-08-26

Summary

Insufficient control flow management in the Intel(R) Ethernet 500 Series Controller drivers for VMWare before version 1.11.4.0 and in the Intel(R) Ethernet 700 Series Controller drivers for VMWare before version 2.1.5.0 may allow an authenticated user to potentially enable a denial of service via local access.

Vulnerable Configurations

Part	Description	Count
Application	Vmware Vmware Ixgben - Vmware Ixgben 1.10.0.1 Vmware Ixgben 1.10.0.13 Vmware Ixgben 1.10.3.0 Vmware I40En -	5
Hardware	Intel Intel 82599 10 Gigabit Ethernet Controller - Intel Ethernet Controller X540 - Intel Ethernet Controller X550 - Intel Ethernet Controller X552 - Intel Ethernet Controller X710 - Intel Ethernet Controller X722 - Intel Ethernet Controller Xl710 - Intel Ethernet Controller Xxv710 -	8

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00650.html