CVE-2022-31699 - Vulnerability Details

VMware ESXi contains a heap-overflow vulnerability. A malicious local actor with restricted privileges within a sandbox process may exploit this issue to achieve a partial information disclosure.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Vmware	Cloud Foundation Esxi

Configuration 1 [-]

OR	cpe:2.3:a:vmware:cloud_foundation:3.0:-::::::
	cpe:2.3:a:vmware:cloud_foundation:3.0.1:::::::*
	cpe:2.3:a:vmware:cloud_foundation:3.0.1.1:::::::*
	cpe:2.3:a:vmware:cloud_foundation:3.5:::::::*
	cpe:2.3:a:vmware:cloud_foundation:3.5.1:::::::*
	cpe:2.3:a:vmware:cloud_foundation:3.7:::::::*
	cpe:2.3:a:vmware:cloud_foundation:3.7.1:::::::*
	cpe:2.3:a:vmware:cloud_foundation:3.7.2:::::::*
	cpe:2.3:a:vmware:cloud_foundation:3.8:::::::*
	cpe:2.3:a:vmware:cloud_foundation:3.8.1:::::::*
	cpe:2.3:a:vmware:cloud_foundation:3.9:::::::*
	cpe:2.3:a:vmware:cloud_foundation:3.9.1:::::::*
	cpe:2.3:a:vmware:cloud_foundation:3.10:::::::*
	cpe:2.3:a:vmware:cloud_foundation:3.10.1:::::::*
	cpe:2.3:a:vmware:cloud_foundation:3.10.1.1:::::::*
	cpe:2.3:a:vmware:cloud_foundation:3.10.1.2:::::::*
	cpe:2.3:a:vmware:cloud_foundation:3.10.2.1:::::::*
	cpe:2.3:a:vmware:cloud_foundation:3.10.2.2:::::::*
	cpe:2.3:a:vmware:cloud_foundation:3.11:::::::*
	cpe:2.3:a:vmware:cloud_foundation:4.0:-::::::
	cpe:2.3:a:vmware:cloud_foundation:4.0.1:::::::*
	cpe:2.3:a:vmware:cloud_foundation:4.1:::::::*
	cpe:2.3:a:vmware:cloud_foundation:4.1.0.1:::::::*
	cpe:2.3:a:vmware:cloud_foundation:4.2:::::::*
	cpe:2.3:a:vmware:cloud_foundation:4.2.1:::::::*
	cpe:2.3:a:vmware:cloud_foundation:4.3:::::::*
	cpe:2.3:a:vmware:cloud_foundation:4.3.1:::::::*
	cpe:2.3:a:vmware:cloud_foundation:4.4:::::::*
	cpe:2.3:a:vmware:cloud_foundation:4.4.1:::::::*
	cpe:2.3:a:vmware:cloud_foundation:4.4.1.1:::::::*
	cpe:2.3:o:vmware:esxi:6.5:-::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201701001::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201703001::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201703002::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201704001::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707101::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707102::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707103::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707201::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707202::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707203::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707204::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707205::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707206::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707207::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707208::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707209::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707210::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707211::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707212::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707213::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707214::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707215::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707216::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707217::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707218::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707219::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707220::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201707221::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201710001::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201712001::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201803001::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201806001::::::
	cpe:2.3:o:vmware:esxi:6.5:650-201808001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201810001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201810002::::::
cpe:2.3:o:vmware:esxi:6.5:650-201811001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201811002::::::
cpe:2.3:o:vmware:esxi:6.5:650-201811301::::::
cpe:2.3:o:vmware:esxi:6.5:650-201901001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201903001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201905001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201908001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201910001::::::
cpe:2.3:o:vmware:esxi:6.5:650-20191004001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201911001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201911401::::::
cpe:2.3:o:vmware:esxi:6.5:650-201911402::::::
cpe:2.3:o:vmware:esxi:6.5:650-201912001::::::
cpe:2.3:o:vmware:esxi:6.5:650-201912002::::::
cpe:2.3:o:vmware:esxi:6.5:650-201912101::::::
cpe:2.3:o:vmware:esxi:6.5:650-201912102::::::
cpe:2.3:o:vmware:esxi:6.5:650-201912103::::::
cpe:2.3:o:vmware:esxi:6.5:650-201912104::::::
cpe:2.3:o:vmware:esxi:6.5:650-201912301::::::
cpe:2.3:o:vmware:esxi:6.5:650-201912401::::::
cpe:2.3:o:vmware:esxi:6.5:650-201912402::::::
cpe:2.3:o:vmware:esxi:6.5:650-201912403::::::
cpe:2.3:o:vmware:esxi:6.5:650-201912404::::::
cpe:2.3:o:vmware:esxi:6.5:650-202005001::::::
cpe:2.3:o:vmware:esxi:6.5:650-202006001::::::
cpe:2.3:o:vmware:esxi:6.5:650-202007001::::::
cpe:2.3:o:vmware:esxi:6.5:650-202010001::::::
cpe:2.3:o:vmware:esxi:6.5:650-202011001::::::
cpe:2.3:o:vmware:esxi:6.5:650-202011002::::::
cpe:2.3:o:vmware:esxi:6.5:650-202102001::::::
cpe:2.3:o:vmware:esxi:6.5:650-202102002::::::
cpe:2.3:o:vmware:esxi:6.5:650-202102003::::::
cpe:2.3:o:vmware:esxi:6.5:650-202107401::::::
cpe:2.3:o:vmware:esxi:6.5:650-202202001::::::
cpe:2.3:o:vmware:esxi:6.5:650-202205001::::::
cpe:2.3:o:vmware:esxi:6.5:650-202207001::::::
cpe:2.3:o:vmware:esxi:6.7:-::::::
cpe:2.3:o:vmware:esxi:6.7:670-201806001::::::
cpe:2.3:o:vmware:esxi:6.7:670-201807001::::::
cpe:2.3:o:vmware:esxi:6.7:670-201808001::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810001::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810101::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810102::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810103::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810201::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810202::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810203::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810204::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810205::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810206::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810207::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810208::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810209::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810210::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810211::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810212::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810213::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810214::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810215::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810216::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810217::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810218::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810219::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810220::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810221::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810222::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810223::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810224::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810225::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810226::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810227::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810228::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810229::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810230::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810231::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810232::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810233::::::
cpe:2.3:o:vmware:esxi:6.7:670-201810234::::::
cpe:2.3:o:vmware:esxi:6.7:670-201811001::::::
cpe:2.3:o:vmware:esxi:6.7:670-201901001::::::
cpe:2.3:o:vmware:esxi:6.7:670-201901401::::::
cpe:2.3:o:vmware:esxi:6.7:670-201901402::::::
cpe:2.3:o:vmware:esxi:6.7:670-201901403::::::
cpe:2.3:o:vmware:esxi:6.7:670-201903001::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904001::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904201::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904201-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904202::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904202-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904203::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904203-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904204::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904204-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904205::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904205-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904206::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904206-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904207::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904207-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904208::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904208-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904209::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904209-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904210::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904210-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904211::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904211-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904212::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904212-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904213::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904213-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904214::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904214-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904215::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904215-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904216::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904216-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904217::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904217-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904218::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904218-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904219::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904219-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904220::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904220-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904221::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904221-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904222::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904222-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904223::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904223-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904224::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904224-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904225::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904225-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904226::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904226-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904227::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904227-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904228::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904228-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904229::::::
cpe:2.3:o:vmware:esxi:6.7:670-201904229-ug::::::
cpe:2.3:o:vmware:esxi:6.7:670-201905001::::::
cpe:2.3:o:vmware:esxi:6.7:670-201906002::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908101::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908102::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908103::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908104::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908201::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908202::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908203::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908204::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908205::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908206::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908207::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908208::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908209::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908210::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908211::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908212::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908213::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908214::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908215::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908216::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908217::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908218::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908219::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908220::::::
cpe:2.3:o:vmware:esxi:6.7:670-201908221::::::
cpe:2.3:o:vmware:esxi:6.7:670-201911001::::::
cpe:2.3:o:vmware:esxi:6.7:670-201912001::::::
cpe:2.3:o:vmware:esxi:6.7:670-201912101::::::
cpe:2.3:o:vmware:esxi:6.7:670-201912102::::::
cpe:2.3:o:vmware:esxi:6.7:670-201912401::::::
cpe:2.3:o:vmware:esxi:6.7:670-201912402::::::
cpe:2.3:o:vmware:esxi:6.7:670-201912403::::::
cpe:2.3:o:vmware:esxi:6.7:670-201912404::::::
cpe:2.3:o:vmware:esxi:6.7:670-201912405::::::
cpe:2.3:o:vmware:esxi:6.7:670-202004001::::::
cpe:2.3:o:vmware:esxi:6.7:670-202004002::::::
cpe:2.3:o:vmware:esxi:6.7:670-202004301::::::
cpe:2.3:o:vmware:esxi:6.7:670-202004401::::::
cpe:2.3:o:vmware:esxi:6.7:670-202004402::::::
cpe:2.3:o:vmware:esxi:6.7:670-202004403::::::
cpe:2.3:o:vmware:esxi:6.7:670-202004404::::::
cpe:2.3:o:vmware:esxi:6.7:670-202004405::::::
cpe:2.3:o:vmware:esxi:6.7:670-202004406::::::
cpe:2.3:o:vmware:esxi:6.7:670-202004407::::::
cpe:2.3:o:vmware:esxi:6.7:670-202004408::::::
cpe:2.3:o:vmware:esxi:6.7:670-202006001::::::
cpe:2.3:o:vmware:esxi:6.7:670-202008001::::::
cpe:2.3:o:vmware:esxi:6.7:670-202010001::::::
cpe:2.3:o:vmware:esxi:6.7:670-202011001::::::
cpe:2.3:o:vmware:esxi:6.7:670-202011002::::::
cpe:2.3:o:vmware:esxi:6.7:670-202102001::::::
cpe:2.3:o:vmware:esxi:6.7:670-202103001::::::
cpe:2.3:o:vmware:esxi:6.7:670-202111001::::::
cpe:2.3:o:vmware:esxi:6.7:670-202201001::::::
cpe:2.3:o:vmware:esxi:6.7:670-202206001::::::
cpe:2.3:o:vmware:esxi:6.7:670-202207001::::::
cpe:2.3:o:vmware:esxi:7.0:-::::::
cpe:2.3:o:vmware:esxi:7.0:beta::::::
cpe:2.3:o:vmware:esxi:7.0:update_1::::::
cpe:2.3:o:vmware:esxi:7.0:update_1a::::::
cpe:2.3:o:vmware:esxi:7.0:update_1b::::::
cpe:2.3:o:vmware:esxi:7.0:update_1c::::::
cpe:2.3:o:vmware:esxi:7.0:update_1d::::::
cpe:2.3:o:vmware:esxi:7.0:update_1e::::::
cpe:2.3:o:vmware:esxi:7.0:update_2::::::
cpe:2.3:o:vmware:esxi:7.0:update_2a::::::
cpe:2.3:o:vmware:esxi:7.0:update_2c::::::
cpe:2.3:o:vmware:esxi:7.0:update_2d::::::
cpe:2.3:o:vmware:esxi:7.0:update_2e::::::
cpe:2.3:o:vmware:esxi:7.0:update_3c::::::
cpe:2.3:o:vmware:esxi:7.0:update_3d::::::
cpe:2.3:o:vmware:esxi:7.0:update_3e::::::
cpe:2.3:o:vmware:esxi:7.0:update_3f::::::
cpe:2.3:o:vmware:esxi:7.0:update_3g::::::

No data.

References

Link	Providers
https://www.vmware.com/security/advisories/VMSA-2022-0030.html

History

Tue, 22 Apr 2025 16:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: vmware

Published: 2022-12-13T00:00:00.000Z

Updated: 2025-04-22T15:47:15.962Z

Reserved: 2022-05-25T00:00:00.000Z

Link: CVE-2022-31699

Vulnrichment

Updated: 2024-08-03T07:26:00.963Z

NVD

Status : Modified

Published: 2022-12-13T16:15:19.903

Modified: 2025-04-22T16:15:29.720

Link: CVE-2022-31699

Redhat

No data.

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object