CVE-2022-22983
First published: Tue Aug 09 2022(Updated: )
VMware Workstation (16.x prior to 16.2.4) contains an unprotected storage of credentials vulnerability. A malicious actor with local user privileges to the victim machine may exploit this vulnerability leading to the disclosure of user passwords of the remote server connected through VMware Workstation.
Credit: security@vmware.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| VMware Workstation | >=16.0.0<16.2.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this VMware Workstation vulnerability?
The vulnerability ID for this VMware Workstation vulnerability is CVE-2022-22983.
What is the severity level of CVE-2022-22983?
CVE-2022-22983 has a severity level of medium (5.9).
Which versions of VMware Workstation are affected by CVE-2022-22983?
VMware Workstation versions prior to 16.2.4 are affected by CVE-2022-22983.
How can a malicious actor exploit CVE-2022-22983?
A malicious actor with local user privileges to the victim machine may exploit CVE-2022-22983 to disclose user passwords of the remote server connected through VMware Workstation.
Where can I find more information about CVE-2022-22983?
You can find more information about CVE-2022-22983 in the VMware Security Advisory VMSA-2022-0023.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/weakness
- agent/remedy
- agent/last-modified-date
- agent/author
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- vendor/vmware
- canonical/vmware workstation
- version/vmware workstation/16.0.0