CVE-2023-20867

Опубликовано: 13 июн. 2023

Источник: debian

Описание

A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
open-vm-tools	fixed	2:12.2.5-1		package

Примечания

https://www.vmware.com/security/advisories/VMSA-2023-0013.html
https://github.com/vmware/open-vm-tools/tree/CVE-2023-20867.patch

Связанные уязвимости

CVE-2023-20867

CVSS3: 3.9

ubuntu

около 2 лет назад

A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine.

CVE-2023-20867

CVSS3: 3.9

redhat

около 2 лет назад

A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine.

CVE-2023-20867

CVSS3: 3.9

nvd

около 2 лет назад

A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine.

SUSE-SU-2023:2604-2

suse-cvrf

почти 2 года назад

Security update for open-vm-tools

SUSE-SU-2023:2604-1

suse-cvrf

около 2 лет назад

Security update for open-vm-tools