CVE-2023-20867 — VMware Tools Authentication Bypass Vulnerability
2023-06-23 • CISA Known Exploited Vulnerability
[event] VMware Tools contains an authentication bypass vulnerability in the vgauth module. A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine. An attacker must have root access over ESXi to exploit this vulnerability.
> AFFECTED SOFTWARE
| Field | Value |
|---|---|
| Vendor | VMware |
| Product | Tools |
| CWE | CWE-287 |
| CVE ID | CVE-2023-20867 |
| Date Added | 2023-06-23 |
| Due Date | 2023-07-14 |
| Ransomware Campaign | Unknown |
> MITIGATION
Apply updates per vendor instructions.
Due Date: 2023-07-14