Vulnerability Details CVE-2023-20867
A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.027
EPSS Ranking 85.7%
CVSS Severity
CVSS v3 Score 3.9
Proposed Action
VMware Tools contains an authentication bypass vulnerability in the vgauth module. A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine. An attacker must have root access over ESXi to exploit this vulnerability.
Ransomware Campaign
Unknown
References
- http://www.openwall.com/lists/oss-security/2023/10/16/11
- http://www.openwall.com/lists/oss-security/2023/10/16/2
- https://lists.debian.org/debian-lts-announce/2023/08/msg00020.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NVKQ6Y2JFJRWPFOZUOTFO3H27BK5GGOG/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TJNJMD67QIT6LXLKWSHFM47DCLRSMT6W/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZJM6HDRQYS74JA7YNKQBFH2XSZ52HEWH/
- https://security.netapp.com/advisory/ntap-20230725-0001/
- https://www.debian.org/security/2023/dsa-5493
- https://www.vmware.com/security/advisories/VMSA-2023-0013.html
- http://www.openwall.com/lists/oss-security/2023/10/16/11
- http://www.openwall.com/lists/oss-security/2023/10/16/2
- https://lists.debian.org/debian-lts-announce/2023/08/msg00020.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NVKQ6Y2JFJRWPFOZUOTFO3H27BK5GGOG/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TJNJMD67QIT6LXLKWSHFM47DCLRSMT6W/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZJM6HDRQYS74JA7YNKQBFH2XSZ52HEWH/
- https://security.netapp.com/advisory/ntap-20230725-0001/
- https://www.debian.org/security/2023/dsa-5493
- https://www.vmware.com/security/advisories/VMSA-2023-0013.html
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-20867
Products affected by CVE-2023-20867
-
cpe:2.3:a:vmware:tools:10.3.0
-
cpe:2.3:a:vmware:tools:10.3.10
-
cpe:2.3:a:vmware:tools:10.3.2
-
cpe:2.3:a:vmware:tools:10.3.20
-
cpe:2.3:a:vmware:tools:10.3.21
-
cpe:2.3:a:vmware:tools:10.3.22
-
cpe:2.3:a:vmware:tools:10.3.25
-
cpe:2.3:a:vmware:tools:10.3.26
-
cpe:2.3:a:vmware:tools:10.3.5
-
cpe:2.3:a:vmware:tools:11.0.0
-
cpe:2.3:a:vmware:tools:11.0.1
-
cpe:2.3:a:vmware:tools:11.0.5
-
cpe:2.3:a:vmware:tools:11.1.0
-
cpe:2.3:a:vmware:tools:11.1.1
-
cpe:2.3:a:vmware:tools:11.1.5
-
cpe:2.3:a:vmware:tools:11.2.0
-
cpe:2.3:a:vmware:tools:11.2.1
-
cpe:2.3:a:vmware:tools:11.2.5
-
cpe:2.3:a:vmware:tools:11.2.6
-
cpe:2.3:a:vmware:tools:11.3.0
-
cpe:2.3:a:vmware:tools:12.1.0
-
cpe:2.3:a:vmware:tools:12.1.1
-
cpe:2.3:a:vmware:tools:12.1.5
-
cpe:2.3:a:vmware:tools:12.2.0
-
cpe:2.3:o:debian:debian_linux:10.0
-
cpe:2.3:o:debian:debian_linux:11.0
-
cpe:2.3:o:debian:debian_linux:12.0
-
cpe:2.3:o:fedoraproject:fedora:37
-
cpe:2.3:o:fedoraproject:fedora:38
-
cpe:2.3:o:fedoraproject:fedora:39