Количество 23
Количество 23
SUSE-SU-2023:4230-1
Security update for open-vm-tools
SUSE-SU-2023:4229-1
Security update for open-vm-tools
SUSE-SU-2023:4228-1
Security update for open-vm-tools
SUSE-SU-2023:4227-1
Security update for open-vm-tools
RLSA-2023:7265
Important: open-vm-tools security update
ELSA-2023-7279
ELSA-2023-7279: open-vm-tools security update (IMPORTANT)
ELSA-2023-7277
ELSA-2023-7277: open-vm-tools security update (IMPORTANT)
ELSA-2023-7265
ELSA-2023-7265: open-vm-tools security update (IMPORTANT)
ROS-20240402-19
Множественные уязвимости open-vm-tools
CVE-2023-34059
open-vm-tools contains a file descriptor hijack vulnerability in the vmware-user-suid-wrapper. A malicious actor with non-root privileges may be able to hijack the /dev/uinput file descriptor allowing them to simulate user inputs.
CVE-2023-34059
open-vm-tools contains a file descriptor hijack vulnerability in the vmware-user-suid-wrapper. A malicious actor with non-root privileges may be able to hijack the /dev/uinput file descriptor allowing them to simulate user inputs.
CVE-2023-34059
open-vm-tools contains a file descriptor hijack vulnerability in the vmware-user-suid-wrapper. A malicious actor with non-root privileges may be able to hijack the /dev/uinput file descriptor allowing them to simulate user inputs.
CVE-2023-34059
CVE-2023-34059
open-vm-tools contains a file descriptor hijack vulnerability in the v ...
CVE-2023-34058
VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that has been granted Guest Operation Privileges https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/GUID-6A952214-0E5E-4CCF-9D2A-90948FF643EC.html in a target virtual machine may be able to elevate their privileges if that target virtual machine has been assigned a more privileged Guest Alias https://vdc-download.vmware.com/vmwb-repository/dcr-public/d1902b0e-d479-46bf-8ac9-cee0e31e8ec0/07ce8dbd-db48-4261-9b8f-c6d3ad8ba472/vim.vm.guest.AliasManager.html .
CVE-2023-34058
VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that has been granted Guest Operation Privileges https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/GUID-6A952214-0E5E-4CCF-9D2A-90948FF643EC.html in a target virtual machine may be able to elevate their privileges if that target virtual machine has been assigned a more privileged Guest Alias https://vdc-download.vmware.com/vmwb-repository/dcr-public/d1902b0e-d479-46bf-8ac9-cee0e31e8ec0/07ce8dbd-db48-4261-9b8f-c6d3ad8ba472/vim.vm.guest.AliasManager.html .
CVE-2023-34058
VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that has been granted Guest Operation Privileges https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/GUID-6A952214-0E5E-4CCF-9D2A-90948FF643EC.html in a target virtual machine may be able to elevate their privileges if that target virtual machine has been assigned a more privileged Guest Alias https://vdc-download.vmware.com/vmwb-repository/dcr-public/d1902b0e-d479-46bf-8ac9-cee0e31e8ec0/07ce8dbd-db48-4261-9b8f-c6d3ad8ba472/vim.vm.guest.AliasManager.html .
CVE-2023-34058
CVE-2023-34058
VMware Tools contains a SAML token signature bypass vulnerability.A ma ...
GHSA-q6p8-m5f4-4vmp
open-vm-tools contains a file descriptor hijack vulnerability in the vmware-user-suid-wrapper. A malicious actor with non-root privileges may be able to hijack the /dev/uinput file descriptor allowing them to simulate user inputs.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | SUSE-SU-2023:4230-1 Security update for open-vm-tools | больше 1 года назад | ||
| SUSE-SU-2023:4229-1 Security update for open-vm-tools | больше 1 года назад | ||
| SUSE-SU-2023:4228-1 Security update for open-vm-tools | больше 1 года назад | ||
| SUSE-SU-2023:4227-1 Security update for open-vm-tools | больше 1 года назад | ||
 | RLSA-2023:7265 Important: open-vm-tools security update | больше 1 года назад | ||
| ELSA-2023-7279 ELSA-2023-7279: open-vm-tools security update (IMPORTANT) | больше 1 года назад | ||
| ELSA-2023-7277 ELSA-2023-7277: open-vm-tools security update (IMPORTANT) | больше 1 года назад | ||
| ELSA-2023-7265 ELSA-2023-7265: open-vm-tools security update (IMPORTANT) | больше 1 года назад | ||
 | ROS-20240402-19 Множественные уязвимости open-vm-tools | CVSS3: 7.5 | около 1 года назад | |
 | CVE-2023-34059 open-vm-tools contains a file descriptor hijack vulnerability in the vmware-user-suid-wrapper. A malicious actor with non-root privileges may be able to hijack the /dev/uinput file descriptor allowing them to simulate user inputs. | CVSS3: 7.4 | 0% Низкий | больше 1 года назад |
 | CVE-2023-34059 open-vm-tools contains a file descriptor hijack vulnerability in the vmware-user-suid-wrapper. A malicious actor with non-root privileges may be able to hijack the /dev/uinput file descriptor allowing them to simulate user inputs. | CVSS3: 7.4 | 0% Низкий | больше 1 года назад |
 | CVE-2023-34059 open-vm-tools contains a file descriptor hijack vulnerability in the vmware-user-suid-wrapper. A malicious actor with non-root privileges may be able to hijack the /dev/uinput file descriptor allowing them to simulate user inputs. | CVSS3: 7.4 | 0% Низкий | больше 1 года назад |
 | CVSS3: 7 | 0% Низкий | больше 1 года назад | |
| CVE-2023-34059 open-vm-tools contains a file descriptor hijack vulnerability in the v ... | CVSS3: 7.4 | 0% Низкий | больше 1 года назад |
| CVE-2023-34058 VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that has been granted Guest Operation Privileges https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/GUID-6A952214-0E5E-4CCF-9D2A-90948FF643EC.html in a target virtual machine may be able to elevate their privileges if that target virtual machine has been assigned a more privileged Guest Alias https://vdc-download.vmware.com/vmwb-repository/dcr-public/d1902b0e-d479-46bf-8ac9-cee0e31e8ec0/07ce8dbd-db48-4261-9b8f-c6d3ad8ba472/vim.vm.guest.AliasManager.html . | CVSS3: 7.1 | 0% Низкий | больше 1 года назад |
| CVE-2023-34058 VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that has been granted Guest Operation Privileges https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/GUID-6A952214-0E5E-4CCF-9D2A-90948FF643EC.html in a target virtual machine may be able to elevate their privileges if that target virtual machine has been assigned a more privileged Guest Alias https://vdc-download.vmware.com/vmwb-repository/dcr-public/d1902b0e-d479-46bf-8ac9-cee0e31e8ec0/07ce8dbd-db48-4261-9b8f-c6d3ad8ba472/vim.vm.guest.AliasManager.html . | CVSS3: 7.5 | 0% Низкий | больше 1 года назад |
| CVE-2023-34058 VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that has been granted Guest Operation Privileges https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/GUID-6A952214-0E5E-4CCF-9D2A-90948FF643EC.html in a target virtual machine may be able to elevate their privileges if that target virtual machine has been assigned a more privileged Guest Alias https://vdc-download.vmware.com/vmwb-repository/dcr-public/d1902b0e-d479-46bf-8ac9-cee0e31e8ec0/07ce8dbd-db48-4261-9b8f-c6d3ad8ba472/vim.vm.guest.AliasManager.html . | CVSS3: 7.1 | 0% Низкий | больше 1 года назад |
| CVSS3: 7.5 | 0% Низкий | больше 1 года назад | |
| CVE-2023-34058 VMware Tools contains a SAML token signature bypass vulnerability.A ma ... | CVSS3: 7.1 | 0% Низкий | больше 1 года назад |
| GHSA-q6p8-m5f4-4vmp open-vm-tools contains a file descriptor hijack vulnerability in the vmware-user-suid-wrapper. A malicious actor with non-root privileges may be able to hijack the /dev/uinput file descriptor allowing them to simulate user inputs. | CVSS3: 7.4 | 0% Низкий | больше 1 года назад |
Уязвимостей на страницу