Vulnerability CVE-2022-22942


Published: 2023-12-13   Modified: 2023-12-14

Description:
The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling 'file' pointer.

See advisories in our WLB2 database:
Topic
Author
Date
Med.
vmwgfx Driver File Descriptor Handling Privilege Escalation
h00die
01.02.2023

Type:

CWE-264

(Permissions, Privileges, and Access Controls)

 References:
https://github.com/vmware/photon/wiki/Security-Update-3.0-356
https://github.com/vmware/photon/wiki/Security-Update-4.0-148
https://www.openwall.com/lists/oss-security/2022/01/27/4

Copyright 2024, cxsecurity.com

 

Back to Top