CVE-2021-22043

Name of the Vulnerable Software and Affected Versions VMware ESXi (affected versions not specified)

Description The issue is related to a TOCTOU (Time-of-check Time-of-use) vulnerability in the handling of temporary files. This can be exploited by a malicious actor with access to settingsd to escalate their privileges by writing arbitrary files. The vulnerability is also associated with synchronization errors when using a shared resource, which can allow an attacker to elevate their privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.