VMware ESXi contains a TOCTOU (Time-of-check Time-of-use) vulnerability that exists in the way temporary files are handled. A malicious actor with access to settingsd, may exploit this issue to escalate their privileges by writing arbitrary files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vmware fusion |
||
vmware esxi 7.0 |