CVE-2022-22942
HIGHCVSS v3
7.8
HIGH
EPSS Score
13.1%
exploit probability
CISA KEV
No
known exploited
Exploitation
—
SSVC status
Description
The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling 'file' pointer.
Technical Details
- CVSS v3 Vector
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Published
- 12/13/2023
- Last Modified
- 11/21/2024
Frequently Asked Questions
What is CVE-2022-22942?
The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling 'file' pointer.
Is CVE-2022-22942 actively exploited?
Active exploitation of CVE-2022-22942 has not been confirmed. The EPSS score is 13.1%, indicating the estimated probability of exploitation in the next 30 days.
What is the CVSS score for CVE-2022-22942?
CVE-2022-22942 has a CVSS v3 base score of 7.8 (HIGH severity), with vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.
Is CVE-2022-22942 affecting your environment?
Use isMalicious to check if any of your IPs or domains are associated with this vulnerability's IOCs.