CVE-2022-31705 - VMware ESXi, Workstation, and Fusion contain a heap out-of-bounds write vulnerability in the USB 2.0

CVE-2022-31705

Summary

VMware ESXi, Workstation, and Fusion contain a heap out-of-bounds write vulnerability in the USB 2.0 controller (EHCI). A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host. On ESXi, the exploitation is contained within the VMX sandbox whereas, on Workstation and Fusion, this may lead to code execution on the machine where Workstation or Fusion is installed.

References

https://www.vmware.com/security/advisories/VMSA-2022-0033.html

Vulnerable Configurations

cpe:2.3:o:vmware:esxi:7.0:beta:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:beta:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_1:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_1:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_1a:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_1a:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_1b:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_1b:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:-:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:-:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_2:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_2:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_2a:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_2a:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_2c:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_2c:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_2d:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_2d:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_1d:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_1d:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_1c:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_1c:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_3c:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_3c:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_3d:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_3d:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_3e:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_3e:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_2e:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_2e:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_1e:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_1e:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_3g:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_3g:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_3f:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:7.0:update_3f:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.0.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.0.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.1.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.1.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.1.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.1.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.2.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.2.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.2.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.2.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.2.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.2.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.2.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.2.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.2.4:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:16.2.4:*:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:8.0:-:*:*:*:*:*:*
cpe:2.3:o:vmware:esxi:8.0:-:*:*:*:*:*:*
cpe:2.3:a:vmware:fusion:12.0.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:fusion:12.0.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:fusion:12.1.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:fusion:12.1.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:fusion:12.1.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:fusion:12.1.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:fusion:12.1.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:fusion:12.1.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*

CVSS

Base:	None
Impact:
Exploitability:

CWE

CWE-787

CAPEC

Access

Vector	Complexity	Authentication

Impact

Confidentiality	Integrity	Availability

Last major update

19-12-2022 - 15:43

Published

14-12-2022 - 19:15

Last modified

19-12-2022 - 15:43