Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-22255

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability in the UHCI USB controller. A malicious actor with administrative access to a virtual machine may be able to exploit this issue to leak memory from the vmx process.  

Published

2024-03-05T18:15:48.277

Last Modified

2025-05-07T15:37:25.187

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.1 (HIGH)

Weaknesses
  • Type: Secondary
    CWE-770
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application vmware cloud_foundation ≤ 5.0 Yes
Application vmware workstation < 17.5.1 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0 Yes
Operating System vmware esxi 7.0.0 Yes
Operating System vmware esxi 8.0 Yes
Operating System vmware esxi 8.0 Yes
Operating System vmware esxi 8.0 Yes
Operating System vmware esxi 8.0 Yes
Operating System vmware esxi 8.0 Yes
Operating System vmware esxi 8.0 Yes
Operating System vmware esxi 8.0 Yes
Operating System vmware esxi 8.0 Yes
Application vmware fusion < 13.5.1 Yes
Operating System apple macos - No
References