CVE-2023-20867 — Actively Exploited: Tools (VMware)
VMware Tools contains an authentication bypass vulnerability in the vgauth module. A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine. An attacker must have root access over ESXi to exploit this
| CVE ID | CVE-2023-20867 |
|---|---|
| Vendor | VMware |
| Product | Tools |
| Vulnerability name | VMware Tools Authentication Bypass Vulnerability |
| Date added | 2023-06-23 |
| Remediation due | 2023-07-14 |
| Known ransomware use | Unknown |
| Required action | Apply updates per vendor instructions. |
| Description | VMware Tools contains an authentication bypass vulnerability in the vgauth module. A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine. An attacker must have root access over ESXi to exploit this vulnerability. |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →