CVE-2023-20867

Known exploited
A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine.
Source: VMware
Max CVSS
3.9
EPSS Score
0.16%
Published
2023-06-13
Updated
2023-10-16
CISA KEV Added
2023-06-23
VMware ESXi contains a heap-overflow vulnerability. A malicious local actor with restricted privileges within a sandbox process may exploit this issue to achieve a partial information disclosure.
Source: VMware
Max CVSS
3.3
EPSS Score
0.04%
Published
2022-12-13
Updated
2022-12-15
Applications that allow HTTP PATCH access to resources exposed by Spring Data REST in versions 3.6.0 - 3.5.5, 3.7.0 - 3.7.2, and older unsupported versions, if an attacker knows about the structure of the underlying domain model, they can craft HTTP requests that expose hidden entity attributes.
Source: VMware
Max CVSS
3.7
EPSS Score
0.10%
Published
2022-09-21
Updated
2022-09-22
The installer of the macOS Sensor for VMware Carbon Black Cloud (prior to 3.5.1) handles certain files in an insecure way. A malicious actor who has local access to the endpoint on which a macOS sensor is going to be installed, may overwrite a limited number of files with output from the sensor installation.
Source: VMware
Max CVSS
3.6
EPSS Score
0.04%
Published
2020-12-16
Updated
2022-06-13
VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain a denial of service vulnerability due to an out-of-bounds write issue in Cortado ThinPrint component. A malicious actor with normal access to a virtual machine may be able to exploit this issue to create a partial denial-of-service condition on the system where Workstation or Horizon Client for Windows is installed. Exploitation is only possible if virtual printing has been enabled. This feature is not enabled by default on Workstation but it is enabled by default on Horizon Client.
Source: VMware
Max CVSS
3.3
EPSS Score
0.05%
Published
2020-09-16
Updated
2020-09-28
VMware Tools for macOS (11.x.x and prior before 11.1.1) contains a denial-of-service vulnerability in the Host-Guest File System (HGFS) implementation. Successful exploitation of this issue may allow attackers with non-admin privileges on guest macOS virtual machines to create a denial-of-service condition on their own VMs.
Source: VMware
Max CVSS
3.3
EPSS Score
0.04%
Published
2020-06-19
Updated
2021-09-08
VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x before 15.5.5), and Fusion (11.x before 11.5.5) contain an out-of-bounds read vulnerability in the Shader functionality. A malicious actor with non-administrative local access to a virtual machine with 3D graphics enabled may be able to exploit this vulnerability to crash the virtual machine's vmx process leading to a partial denial of service condition.
Source: VMware
Max CVSS
3.8
EPSS Score
0.05%
Published
2020-06-25
Updated
2020-07-01
VMware ESXi (6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), VMware Workstation (15.x before 15.1.0) and VMware Fusion (11.x before 11.1.0) contain a memory leak vulnerability in the VMCI module. A malicious actor with local non-administrative access to a virtual machine may be able to crash the virtual machine's vmx process leading to a partial denial of service.
Source: VMware
Max CVSS
3.3
EPSS Score
0.04%
Published
2020-05-29
Updated
2021-07-21
VMware Workstation (15.x before 15.5.2) and Horizon Client for Windows (5.x and prior before 5.4.0) contain a denial-of-service vulnerability due to a heap-overflow issue in Cortado Thinprint. Attackers with non-administrative access to a guest VM with virtual printing enabled may exploit this issue to create a denial-of-service condition of the Thinprint service running on the system where Workstation or Horizon Client is installed.
Source: VMware
Max CVSS
3.8
EPSS Score
0.04%
Published
2020-03-17
Updated
2020-03-24
Airwatch Inbox for Android contains a vulnerability that may allow a rooted device to decrypt the local data used by the application. Successful exploitation of this issue may result in an unauthorized disclosure of confidential data.
Source: VMware
Max CVSS
3.8
EPSS Score
0.05%
Published
2017-05-10
Updated
2019-10-03
vmware-authd (aka the Authorization process) in VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, and VMware ESXi 5.0 through 5.5 allows attackers to cause a host OS denial of service via unspecified vectors.
Source: MITRE
Max CVSS
3.3
EPSS Score
0.21%
Published
2015-01-29
Updated
2017-09-08
The Host Guest File System (HGFS) in VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, and VMware Fusion 6.x before 6.0.5 and 7.x before 7.0.1 allows guest OS users to cause a guest OS denial of service via unspecified vectors.
Source: MITRE
Max CVSS
3.3
EPSS Score
0.18%
Published
2015-01-29
Updated
2017-09-08
VMware Workstation 9.x before 9.0.1, VMware Player 5.x before 5.0.1, VMware Fusion 5.x before 5.0.1, VMware ESXi 4.0 through 5.1, and VMware ESX 4.0 and 4.1 allow guest OS users to cause a denial of service (VMX process disruption) by using an invalid port.
Source: MITRE
Max CVSS
3.3
EPSS Score
0.22%
Published
2014-01-17
Updated
2017-08-29
vmware-hgfsmounter in VMware Open Virtual Machine Tools (aka open-vm-tools) 8.4.2-261024 and earlier attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to trigger corruption of this file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.
Source: MITRE
Max CVSS
3.3
EPSS Score
0.05%
Published
2011-04-10
Updated
2017-08-17
vmware-config.pl in VMware for Linux, ESX Server 2.x, and Infrastructure 3 does not check the return code from a Perl chmod function call, which might cause an SSL key file to be created with an unsafe umask that allows local users to read or modify the SSL key.
Source: MITRE
Max CVSS
3.6
EPSS Score
0.05%
Published
2006-07-21
Updated
2018-10-30
VMware Workstation 4.0 for Linux allows local users to overwrite arbitrary files and gain privileges via "symlink manipulation."
Source: MITRE
Max CVSS
3.7
EPSS Score
0.04%
Published
2003-08-07
Updated
2016-10-18
VMWare creates a temporary file vmware-log.USERNAME with insecure permissions, which allows local users to read or modify license information.
Source: MITRE
Max CVSS
3.6
EPSS Score
0.04%
Published
2001-07-30
Updated
2017-10-10
VMWare 1.1.2 allows local users to cause a denial of service via a symlink attack.
Source: MITRE
Max CVSS
3.6
EPSS Score
0.04%
Published
2000-01-17
Updated
2008-09-10
18 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!