Multiple vulnerabilities (CVE-2021-22040, CVE-2021-22041, CVE-2021-22042, CVE-2021-22043, CVE-2021-22050, CVE-2022-22945) were identified in VMware products. An attacker could exploit some of these vulnerabilities to trigger remote code execution, elevation of privilege, denial of service condition and arbitrary commands execution. Vmware released two new security advisories to address these vulnerabilities:

VMSA-2022-0004 - Vulnerabilities in VMware ESXi, Workstation and Fusion products;

VMSA-2022-0005 - Vulnerability in VMware NSX Data Center for vSphere.

Vmware has also updated security advisory to address an information disclosure vulnerability (CVE-2022-22939) in VMware Cloud Foundation – VMSA-2022-0003.1.

Source: vmware.com