Rewterz Threat Advisory – CVE-2022-42475 – Fortinet FortiOS Vulnerability
December 12, 2022Rewterz Threat Alert – GuLoader Malspam Campaign – Active IOCs
December 13, 2022Rewterz Threat Advisory – CVE-2022-42475 – Fortinet FortiOS Vulnerability
December 12, 2022Rewterz Threat Alert – GuLoader Malspam Campaign – Active IOCs
December 13, 2022Severity
Medium
Analysis Summary
CVE-2022-31696 CVSS:7.5
VMware ESXi could allow a local authenticated attacker to bypass security restrictions, caused by a memory corruption flaw in the handling of a network socket. By sending a specially-crafted request, an attacker could exploit this vulnerability to make escape of the ESXi sandbox.
CVE-2022-31699 CVSS:4.2
VMware ESXi could allow a local authenticated attacker to obtain sensitive information, caused by a heap-based buffer overflow. By sending a specially-crafted request, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.
Impact
Security Bypass
Indicators Of Compromise
CVE
- CVE-2022-31696
- CVE-2022-3169
Affected Vendors
VMware
Affected Products
- VMware ESXi 6.7
- VMware ESXi 7.0
- VMware Cloud Foundation (ESXi) 3.0
- VMware Cloud Foundation (ESXi) 4.0
- VMware ESXi 8.0
Remediation
Refer to VMware Security Advisory for patch, upgrade or suggested workaround information.