CVE-2023-20900

CVSS v3.1

7.5

High

Vector

AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions VMware Tools (affected versions not specified)

Description The issue is related to a SAML token signature bypass vulnerability in VMware Tools. A malicious actor with man-in-the-middle (MITM) network positioning between vCenter server and the virtual machine may be able to bypass SAML token signature verification, to perform VMware Tools Guest Operations. This could allow an attacker to elevate their privileges if the target virtual machine has been assigned a more privileged Guest Alias.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-310CWE-294

Related Identifiers

ALSA-2023:5312

ALSA-2023:5313

ALSA-2023_5312

ALSA-2023_5313

ALT-PU-2023-5310

ALT-PU-2023-5642

ALT-PU-2024-1233

ALT-PU-2024-1863

BDU:2023-05064

CESA-2023_5312

CVE-2023-20900

DLA-3597-1

DSA-5493-1

OESA-2023-1629

OESA-2023-1630

OESA-2023-1631

OPENSUSE-SU-2023_3507-1

OPENSUSE-SU-2023_3835-1

OPENSUSE-SU-2024:13186-1

RHSA-2023:5210

RHSA-2023:5213

RHSA-2023:5216

RHSA-2023:5217

RHSA-2023:5218

RHSA-2023:5220

RHSA-2023:5312

RHSA-2023:5313

RHSA-2023_5217

RHSA-2023_5312

RHSA-2023_5313

RHSA-2024:5315

RLSA-2023:5312

RLSA-2023:5313

ROSA-SA-2023-2242

SUSE-SU-2023:3504-1

SUSE-SU-2023:3505-1

SUSE-SU-2023:3506-1

SUSE-SU-2023:3507-1

SUSE-SU-2023:3795-1

SUSE-SU-2023:3835-1

SUSE-SU-2023_3506-1

SUSE-SU-2023_3507-1

SUSE-SU-2023_3795-1

SUSE-SU-2023_3835-1

USN-6365-1

USN-6365-2

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Linuxmint

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

Vmware Tools

CVE-2023-20900

Weakness Enumeration

Related Identifiers

Affected Products

References · 86