Vulnerabilities > CVE-2022-31693 - Unspecified vulnerability in VMWare Tools
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
VMware Tools for Windows (12.x.y prior to 12.1.5, 11.x.y and 10.x.y) contains a denial-of-service vulnerability in the VM3DMP driver. A malicious actor with local user privileges in the Windows guest OS, where VMware Tools is installed, can trigger a PANIC in the VM3DMP driver leading to a denial-of-service condition in the Windows guest OS.
Vulnerable Configurations
References
- https://security.netapp.com/advisory/ntap-20221223-0009/
- https://security.netapp.com/advisory/ntap-20221223-0009/
- https://security.netapp.com/advisory/ntap-20230824-0009/
- https://security.netapp.com/advisory/ntap-20230824-0009/
- https://www.vmware.com/security/advisories/VMSA-2022-0029.html
- https://www.vmware.com/security/advisories/VMSA-2022-0029.html