CNVD-2024-45223 — Vulnetix

CNVD-2024-45223 PUBLISHED CVSS 7.900000095367432 HIGH

VMware ESXi是美国威睿（VMware）公司的一套可直接安装在物理服务器上的服务器虚拟化平台。 VMware ESXi存在越界写入漏洞，具有管理权限的本地攻击者可利用该漏洞导致沙箱逃逸。

Risk Scores

CVSS 3.1

7.900000095367432

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N

Affected Products

Vendor	Product	Versions
n/a	VMware ESXi	8.0, 7.0, 8.0
n/a	VMware Cloud Foundation	4.x, 5.x
broadcom	vmware_cloud_foundation	5.0, 4.0
vmware	vmware_esxi	8.0, 7.0, 8.0

Exploit Intelligence

https://www.vmware.com/security/advisories/VMSA-2024-0006.html (circl)

Timeline

Mar 5, 2024 CVE Published

References

https://www.vmware.com/security/advisories/VMSA-2024-0006.html url

Open in Interactive Console →

$ Console Community · 100/wk Open console ›