CVE-2021-22045

VMware ESXi (7.0, 6.7 before ESXi670-202111101-SG and 6.5 before ESXi650-202110101-SG), VMware Workstation (16.2.0) and VMware Fusion (12.2.0) contains a heap-overflow vulnerability in CD-ROM device emulation. A malicious actor with access to a virtual machine with CD-ROM device emulation may be able to exploit this vulnerability in conjunction with other issues to execute code on the hypervisor from a virtual machine.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
HIGH
LOW
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
vmwareCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 88%
VendorProductVersion
vmwarecloud_foundation
3.0 ≤
𝑥
≤ 3.10.2.2
vmwarecloud_foundation
4.0 ≤
𝑥
≤ 4.3.1
vmwareworkstation
16.0.0 ≤
𝑥
< 16.2.0
vmwarefusion
12.0.0 ≤
𝑥
< 12.2.0
vmwareesxi
6.5
vmwareesxi
6.5:650-201701001
vmwareesxi
6.5:650-201703001
vmwareesxi
6.5:650-201703002
vmwareesxi
6.5:650-201704001
vmwareesxi
6.5:650-201707101
vmwareesxi
6.5:650-201707102
vmwareesxi
6.5:650-201707103
vmwareesxi
6.5:650-201707201
vmwareesxi
6.5:650-201707202
vmwareesxi
6.5:650-201707203
vmwareesxi
6.5:650-201707204
vmwareesxi
6.5:650-201707205
vmwareesxi
6.5:650-201707206
vmwareesxi
6.5:650-201707207
vmwareesxi
6.5:650-201707208
vmwareesxi
6.5:650-201707209
vmwareesxi
6.5:650-201707210
vmwareesxi
6.5:650-201707211
vmwareesxi
6.5:650-201707212
vmwareesxi
6.5:650-201707213
vmwareesxi
6.5:650-201707214
vmwareesxi
6.5:650-201707215
vmwareesxi
6.5:650-201707216
vmwareesxi
6.5:650-201707217
vmwareesxi
6.5:650-201707218
vmwareesxi
6.5:650-201707219
vmwareesxi
6.5:650-201707220
vmwareesxi
6.5:650-201707221
vmwareesxi
6.5:650-201710001
vmwareesxi
6.5:650-201712001
vmwareesxi
6.5:650-201803001
vmwareesxi
6.5:650-201806001
vmwareesxi
6.5:650-201808001
vmwareesxi
6.5:650-201810001
vmwareesxi
6.5:650-201810002
vmwareesxi
6.5:650-201811001
vmwareesxi
6.5:650-201811002
vmwareesxi
6.5:650-201811301
vmwareesxi
6.5:650-201901001
vmwareesxi
6.5:650-201903001
vmwareesxi
6.5:650-201905001
vmwareesxi
6.5:650-201908001
vmwareesxi
6.5:650-201910001
vmwareesxi
6.5:650-20191004001
vmwareesxi
6.5:650-201911001
vmwareesxi
6.5:650-201911401
vmwareesxi
6.5:650-201911402
vmwareesxi
6.5:650-201912001
vmwareesxi
6.5:650-201912002
vmwareesxi
6.5:650-201912101
vmwareesxi
6.5:650-201912102
vmwareesxi
6.5:650-201912103
vmwareesxi
6.5:650-201912104
vmwareesxi
6.5:650-201912301
vmwareesxi
6.5:650-201912401
vmwareesxi
6.5:650-201912402
vmwareesxi
6.5:650-201912403
vmwareesxi
6.5:650-201912404
vmwareesxi
6.5:650-202005001
vmwareesxi
6.5:650-202006001
vmwareesxi
6.5:650-202007001
vmwareesxi
6.5:650-202010001
vmwareesxi
6.5:650-202011001
vmwareesxi
6.5:650-202011002
vmwareesxi
6.5:650-202102001
vmwareesxi
6.5:650-202102002
vmwareesxi
6.5:650-202102003
vmwareesxi
6.5:650-202107401
vmwareesxi
6.7
vmwareesxi
6.7:670-201806001
vmwareesxi
6.7:670-201807001
vmwareesxi
6.7:670-201808001
vmwareesxi
6.7:670-201810001
vmwareesxi
6.7:670-201810101
vmwareesxi
6.7:670-201810102
vmwareesxi
6.7:670-201810103
vmwareesxi
6.7:670-201810201
vmwareesxi
6.7:670-201810202
vmwareesxi
6.7:670-201810203
vmwareesxi
6.7:670-201810204
vmwareesxi
6.7:670-201810205
vmwareesxi
6.7:670-201810206
vmwareesxi
6.7:670-201810207
vmwareesxi
6.7:670-201810208
vmwareesxi
6.7:670-201810209
vmwareesxi
6.7:670-201810210
vmwareesxi
6.7:670-201810211
vmwareesxi
6.7:670-201810212
vmwareesxi
6.7:670-201810213
vmwareesxi
6.7:670-201810214
vmwareesxi
6.7:670-201810215
vmwareesxi
6.7:670-201810216
vmwareesxi
6.7:670-201810217
vmwareesxi
6.7:670-201810218
vmwareesxi
6.7:670-201810219
vmwareesxi
6.7:670-201810220
vmwareesxi
6.7:670-201810221
vmwareesxi
6.7:670-201810222
vmwareesxi
6.7:670-201810223
vmwareesxi
6.7:670-201810224
vmwareesxi
6.7:670-201810225
vmwareesxi
6.7:670-201810226
vmwareesxi
6.7:670-201810227
vmwareesxi
6.7:670-201810228
vmwareesxi
6.7:670-201810229
vmwareesxi
6.7:670-201810230
vmwareesxi
6.7:670-201810231
vmwareesxi
6.7:670-201810232
vmwareesxi
6.7:670-201810233
vmwareesxi
6.7:670-201810234
vmwareesxi
6.7:670-201811001
vmwareesxi
6.7:670-201901001
vmwareesxi
6.7:670-201901401
vmwareesxi
6.7:670-201901402
vmwareesxi
6.7:670-201901403
vmwareesxi
6.7:670-201903001
vmwareesxi
6.7:670-201904001
vmwareesxi
6.7:670-201904201
vmwareesxi
6.7:670-201904202
vmwareesxi
6.7:670-201904203
vmwareesxi
6.7:670-201904204
vmwareesxi
6.7:670-201904205
vmwareesxi
6.7:670-201904206
vmwareesxi
6.7:670-201904207
vmwareesxi
6.7:670-201904208
vmwareesxi
6.7:670-201904209
vmwareesxi
6.7:670-201904210
vmwareesxi
6.7:670-201904211
vmwareesxi
6.7:670-201904212
vmwareesxi
6.7:670-201904213
vmwareesxi
6.7:670-201904214
vmwareesxi
6.7:670-201904215
vmwareesxi
6.7:670-201904216
vmwareesxi
6.7:670-201904217
vmwareesxi
6.7:670-201904218
vmwareesxi
6.7:670-201904219
vmwareesxi
6.7:670-201904220
vmwareesxi
6.7:670-201904221
vmwareesxi
6.7:670-201904222
vmwareesxi
6.7:670-201904223
vmwareesxi
6.7:670-201904224
vmwareesxi
6.7:670-201904225
vmwareesxi
6.7:670-201904226
vmwareesxi
6.7:670-201904227
vmwareesxi
6.7:670-201904228
vmwareesxi
6.7:670-201904229
vmwareesxi
6.7:670-201905001
vmwareesxi
6.7:670-201906002
vmwareesxi
6.7:670-201908101
vmwareesxi
6.7:670-201908102
vmwareesxi
6.7:670-201908103
vmwareesxi
6.7:670-201908104
vmwareesxi
6.7:670-201908201
vmwareesxi
6.7:670-201908202
vmwareesxi
6.7:670-201908203
vmwareesxi
6.7:670-201908204
vmwareesxi
6.7:670-201908205
vmwareesxi
6.7:670-201908206
vmwareesxi
6.7:670-201908207
vmwareesxi
6.7:670-201908208
vmwareesxi
6.7:670-201908209
vmwareesxi
6.7:670-201908210
vmwareesxi
6.7:670-201908211
vmwareesxi
6.7:670-201908212
vmwareesxi
6.7:670-201908213
vmwareesxi
6.7:670-201908214
vmwareesxi
6.7:670-201908215
vmwareesxi
6.7:670-201908216
vmwareesxi
6.7:670-201908217
vmwareesxi
6.7:670-201908218
vmwareesxi
6.7:670-201908219
vmwareesxi
6.7:670-201908220
vmwareesxi
6.7:670-201908221
vmwareesxi
6.7:670-201911001
vmwareesxi
6.7:670-201912001
vmwareesxi
6.7:670-201912101
vmwareesxi
6.7:670-201912102
vmwareesxi
6.7:670-201912401
vmwareesxi
6.7:670-201912402
vmwareesxi
6.7:670-201912403
vmwareesxi
6.7:670-201912404
vmwareesxi
6.7:670-201912405
vmwareesxi
6.7:670-202004001
vmwareesxi
6.7:670-202004002
vmwareesxi
6.7:670-202004301
vmwareesxi
6.7:670-202004401
vmwareesxi
6.7:670-202004402
vmwareesxi
6.7:670-202004403
vmwareesxi
6.7:670-202004404
vmwareesxi
6.7:670-202004405
vmwareesxi
6.7:670-202004406
vmwareesxi
6.7:670-202004407
vmwareesxi
6.7:670-202004408
vmwareesxi
6.7:670-202006001
vmwareesxi
6.7:670-202008001
vmwareesxi
6.7:670-202010001
vmwareesxi
6.7:670-202011001
vmwareesxi
6.7:670-202011002
vmwareesxi
6.7:670-202102001
vmwareesxi
6.7:670-202103001
vmwareesxi
6.7:670-202111001
vmwareesxi
7.0
vmwareesxi
7.0:beta
vmwareesxi
7.0:update_1
vmwareesxi
7.0:update_1a
vmwareesxi
7.0:update_1b
vmwareesxi
7.0:update_1c
vmwareesxi
7.0:update_1d
vmwareesxi
7.0:update_2
vmwareesxi
7.0:update_2a
vmwareesxi
7.0:update_2c
vmwareesxi
7.0:update_2d
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://packetstormsecurity.com/files/165440/VMware-Security-Advisory-2022-0001.html
https://www.vmware.com/security/advisories/VMSA-2022-0001.html
https://www.zerodayinitiative.com/advisories/ZDI-22-003/
http://packetstormsecurity.com/files/165440/VMware-Security-Advisory-2022-0001.html
https://www.vmware.com/security/advisories/VMSA-2022-0001.html
https://www.zerodayinitiative.com/advisories/ZDI-22-003/