Vulnerability Details : CVE-2023-34060
Public exploit exists!
VMware Cloud Director Appliance contains an authentication bypass vulnerability in case VMware Cloud Director Appliance was upgraded to 10.5 from
an older version. On an upgraded version of VMware Cloud Director Appliance 10.5, a malicious actor with network access to the appliance can bypass login
restrictions when authenticating on port 22 (ssh) or port 5480 (appliance management console) . This bypass is not present on port 443 (VCD provider
and tenant login). On a new installation of VMware Cloud Director Appliance 10.5, the bypass is not present. VMware Cloud Director Appliance is impacted since it uses an affected version of sssd from the underlying Photon OS. The sssd issue is no longer present in versions of Photon OS that ship with sssd-2.8.1-11 or higher (Photon OS 3) or sssd-2.8.2-9 or higher (Photon OS 4 and 5).
Products affected by CVE-2023-34060
- cpe:2.3:a:vmware:cloud_director:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-34060
0.16%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 54 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-34060
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
9.8
|
CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
3.9
|
5.9
|
NIST |
CWE ids for CVE-2023-34060
-
The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.Assigned by: nvd@nist.gov (Primary)
References for CVE-2023-34060
-
https://github.com/vmware/photon/wiki/Security-Update-4.0-512
Security Update 4.0 512 · vmware/photon Wiki · GitHubVendor Advisory
-
https://www.vmware.com/security/advisories/VMSA-2023-0026.html
VMSA-2023-0026Vendor Advisory
-
https://github.com/vmware/photon/wiki/Security-Update-3.0-687
Security Update 3.0 687 · vmware/photon Wiki · GitHubVendor Advisory
-
https://github.com/vmware/photon/wiki/Security-Update-5.0-143
Security Update 5.0 143 · vmware/photon Wiki · GitHubVendor Advisory
Jump to