GSD-2024-22254 — Vulnetix

GSD-2024-22254 PUBLISHED CVSS 7.900000095367432 HIGH

VMware ESXi contains an out-of-bounds write vulnerability. A malicious actor with privileges within the VMX process may trigger an out-of-bounds write leading to an escape of the sandbox.

Risk Scores

CVSS v3.1

7.900000095367432

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N

Affected Products

Vendor	Product	Versions
vmware	vmware_esxi	8.0, 8.0, 7.0
n/a	VMware ESXi	8.0, 8.0, 7.0
n/a	VMware Cloud Foundation	5.x, 4.x
broadcom	vmware_cloud_foundation	4.0, 5.0

Timeline

Mar 5, 2024 CVE Published

References

https://www.vmware.com/security/advisories/VMSA-2024-0006.html url

Open in Interactive Console →