CVE-2023-34058

Published: Oct 27, 2023Modified: Mar 6, 2025

7.5

Vector

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.6 / Impact: 5.9

Source: NVD

Description

VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that has been granted Guest Operation Privileges https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/GUID-6A952214-0E5E-4CCF-9D2A-90948FF643EC.html in a target virtual machine may be able to elevate their privileges if that target virtual machine has been assigned a more privileged Guest Alias https://vdc-download.vmware.com/vmwb-repository/dcr-public/d1902b0e-d479-46bf-8ac9-cee0e31e8ec0/07ce8dbd-db48-4261-9b8f-c6d3ad8ba472/vim.vm.guest.AliasManager.html .

Affected (8)

Products: Vmware: Open Vm Tools, Tools · Debian: Debian Linux · Fedoraproject: Fedora

2 products

1 product

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Vmware Open Vm Tools	From 11.0.0 to 12.3.0

Configuration B

3 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 10.0
Debian Debian Linux	Version 11.0
Debian Debian Linux	Version 12.0

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Vmware Tools	From 10.3.0 to 12.3.5

Running on/with	Platform Versions
Microsoft Windows	All versions

Configuration D

3 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 37
Fedoraproject Fedora	Version 38
Fedoraproject Fedora	Version 39

Related CWEs

Improper Verification of Cryptographic Signature

The product does not verify, or incorrectly verifies, the cryptographic signature for data.

References (14)

http://www.openwall.com/lists/oss-security/2023/10/27/1

Source: security@vmware.com

Mailing ListPatch

https://lists.debian.org/debian-lts-announce/2023/11/msg00002.html

Source: security@vmware.com

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/G7G77Z76CQPGUF7VHRA6O3UFCMPPR4O2/

Source: security@vmware.com

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MQUOFQL2SNNNMKROQ3TZQY4HEYMNOIBW/

Source: security@vmware.com

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WLTKVTRKQW2GD2274H3UOW6XU4E62GSK/

Source: security@vmware.com

Mailing ListThird Party Advisory

https://www.debian.org/security/2023/dsa-5543

Source: security@vmware.com

Third Party Advisory

https://www.vmware.com/security/advisories/VMSA-2023-0024.html

Source: security@vmware.com

Vendor Advisory

http://www.openwall.com/lists/oss-security/2023/10/27/1

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListPatch

https://lists.debian.org/debian-lts-announce/2023/11/msg00002.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/G7G77Z76CQPGUF7VHRA6O3UFCMPPR4O2/

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MQUOFQL2SNNNMKROQ3TZQY4HEYMNOIBW/

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WLTKVTRKQW2GD2274H3UOW6XU4E62GSK/

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://www.debian.org/security/2023/dsa-5543

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.vmware.com/security/advisories/VMSA-2023-0024.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.