CVE-2022-22964

Name of the Vulnerable Software and Affected Versions VMware Horizon Client for Linux versions prior to 22.x VMware Horizon Agent for Linux versions prior to 22.x

Description The issue is related to a local privilege escalation vulnerability due to a vulnerable configuration file, which may allow an attacker to elevate their privileges to the root level. This vulnerability is associated with insufficient access control in the configuration file of the VMware Horizon Client for Linux.

Recommendations For VMware Horizon Client for Linux versions prior to 22.x, update to version 22.x or later to resolve the issue. For VMware Horizon Agent for Linux versions prior to 22.x, update to version 22.x or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable configuration file until a patch is available.