CVE-2026-22722

CVE-2026-22722

MEDIUM CVSS 3.1: 6.1 EPSS 0.01%

Parameter	Value
CVSS	6.1 (MEDIUM)
Type	CWE-476 (NULL Pointer Dereference)
Public PoC	No

A malicious actor with authenticated user privileges on a Windows based Workstation host may be able to cause a null pointer dereference error. To Remediate CVE-2026-22722, apply the patches listed in the "Fixed version" column of the 'Response Matrix'

Attack Parameters

Attack Vector

Local

Requires local access

Attack Complexity

Low

Easy to exploit

Privileges Required

Low

Basic privileges needed

User Interaction

None

No user interaction needed

Impact Assessment

Confidentiality

None

No data leak

Integrity

Low

Partial data modification

Availability

High

Complete denial of service

CVSS Vector v3.1

Weakness Type (CWE)

CWE-476 NULL Pointer Dereference

References 1

https://support.broadcom.com/web/ecx/support-content-notification/-/external/co…

security@vmware.com

Share Post Share Share Share

Menu

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

References 1

CVE Details

Editor's Choice

Menu

CVE-2026-22722

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

References 1

CVE Details

Editor's Choice

Stay informed on cybersecurity