ELSA-2023-3949

Опубликовано: 07 июл. 2023

Источник: oracle-oval

Платформа: Oracle Linux 8

Описание

ELSA-2023-3949: open-vm-tools security update (LOW)

[12.1.5-1.0.2]

[CISA Major Incident] CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module

Обновленные пакеты

Oracle Linux 8

Oracle Linux x86_64

open-vm-tools

12.1.5-1.0.2.el8

open-vm-tools-desktop

12.1.5-1.0.2.el8

open-vm-tools-salt-minion

12.1.5-1.0.2.el8

open-vm-tools-sdmp

12.1.5-1.0.2.el8

Связанные CVE

CVE-2023-20867

Ссылки на источники

Связанные уязвимости

CVE-2023-20867

CVSS3: 3.9

ubuntu

около 2 лет назад

A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine.

CVE-2023-20867

CVSS3: 3.9

redhat

около 2 лет назад

A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine.

CVE-2023-20867

CVSS3: 3.9

nvd

около 2 лет назад

A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine.

CVE-2023-20867

CVSS3: 3.9

debian

около 2 лет назад

A fully compromised ESXi host can force VMware Tools to fail to authen ...

SUSE-SU-2023:2604-2

suse-cvrf

почти 2 года назад

Security update for open-vm-tools