Severity
Medium
Analysis Summary
CVE-2022-31681
VMware ESXi is vulnerable to a denial of service, caused by a NULL pointer deference flaw in the VMX process. By sending a specially-crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service condition on the host machine.
Impact
Denial of Service
Indicators Of Compromise
CVE
- CVE-2022-20939
Affected Vendors
VMware
Affected Products
- VMware ESXi 6.5
- VMware ESXi 6.7
- VMware ESXi 7.0
- VMware Cloud Foundation (ESXi) 3.0
- VMware Cloud Foundation (ESXi) 4.0
Remediation
Refer to VM Security Advisory for patch, upgrade or suggested workaround information.