← ExploitWatch
HomeExploited Vulnerabilities

CVE-2023-20867 — Actively Exploited: Tools (VMware)

VMware Tools contains an authentication bypass vulnerability in the vgauth module. A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine. An attacker must have root access over ESXi to exploit this

CVE IDCVE-2023-20867
VendorVMware
ProductTools
Vulnerability nameVMware Tools Authentication Bypass Vulnerability
Date added2023-06-23
Remediation due2023-07-14
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionVMware Tools contains an authentication bypass vulnerability in the vgauth module. A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine. An attacker must have root access over ESXi to exploit this vulnerability.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →