CVE-2022-22953

EUVD-2022-28076
VMware HCX update addresses an information disclosure vulnerability. A malicious actor with network user access to the VMware HCX appliance may be able to gain access to sensitive information.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 46%
Affected Products (NVD)
VendorProductVersion
vmwarevmware_hcx
4.3.1
vmwarevmware_hcx
4.3.2
𝑥
= Vulnerable software versions
References
https://www.vmware.com/security/advisories/VMSA-2022-0017.html
https://www.vmware.com/security/advisories/VMSA-2022-0017.html