[SECURITY-L] VMware Tools was impacted by a local privilege escalation vulnerability
CSIRT Unicamp
security em unicamp.br
Quarta Agosto 24 10:14:49 -03 2022
Prezados. Bom dia.
Segue notificação sobre vulnerabilidades no VMware Tools.
Advisory ID: VMSA-2022-0024
CVSSv3 Range: 7.0
Issue Date: 2022-08-23
Updated On: 2022-08-23 (Initial Advisory)
CVE(s): CVE-2022-31676
Synopsis: VMware Tools update addresses a local privilege escalation
vulnerability (CVE-2022-31676)
*1. Impacted Products*
- VMware Tools
*2. Introduction*
VMware Tools was impacted by a local privilege escalation
vulnerability. Updates are available to remediate this vulnerability in
affected VMware products.
*3. Local privilege escalation vulnerability (CVE-2022-31676)*
*Description*
VMware Tools contains a local privilege escalation vulnerability. VMware
has evaluated the severity of this issue to be in the Important severity
range <https://www.vmware.com/support/policies/security_response.html> with
a maximum CVSSv3 base score of 7.0
<https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H>
.
*Known Attack Vectors*
A malicious actor with local non-administrative access to the Guest OS can
escalate privileges as a root user in the virtual machine.
*Resolution*
To remediate CVE-2022-31676 apply the patches listed in the 'Fixed Version'
column of the 'Response Matrix' found below.
*Workarounds*
None.
*Additional Documentation*
None.
*Notes*
VMware Tools 10.3.25 only applies to the older Linux releases.
*Acknowledgements*
None.
*Response Matrix*
Product Version Running On CVE Identifier CVSSv3 Severity Fixed Version
Workarounds Additional Documentation
VMware Tools
12.x.y, 11.x.y
Windows
CVE-2022-31676
7.0
<https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H>
important
12.1.0
<https://docs.vmware.com/en/VMware-Tools/12.1/rn/VMware-Tools-1210-Release-Notes.html>
None
None
VMware Tools
12.x.y, 11.x.y
Linux
CVE-2022-31676
7.0
<https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H>
important
12.1.0
<https://docs.vmware.com/en/VMware-Tools/12.1/rn/VMware-Tools-1210-Release-Notes.html>
None
None
VMware Tools
10.x.y
Linux
CVE-2022-31676
7.0
<https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H>
important
10.3.25
<https://docs.vmware.com/en/VMware-Tools/10.3/rn/VMware-Tools-10325-Release-Notes.html>
None
None
*4. References*
Fixed Version(s) and Release Notes:
VMware Tools 12.1.0
Downloads and Documentation:
https://customerconnect.vmware.com/downloads/details?downloadGroup=VMTOOLS1210&productId=1259&rPId=92824
https://docs.vmware.com/en/VMware-Tools/12.1/rn/VMware-Tools-1210-Release-Notes.html
VMware Tools 10.3.25
https://customerconnect.vmware.com/downloads/details?downloadGroup=VMTOOLS10325&productId=1072&rPId=92945
https://docs.vmware.com/en/VMware-Tools/10.3/rn/VMware-Tools-10325-Release-Notes.html
Mitre CVE Dictionary Links:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31676
FIRST CVSSv3 Calculator:
CVE-2022-31676:
https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
*5. Change Log*
*2022-08-23 VMSA-2022-0024 *Initial security advisory.
===
Computer Security Incident Response Team - CSIRT
Universidade Estadual de Campinas - Unicamp
Centro de Computacao - CCUEC
GnuPG Public Key: http://www.security.unicamp.br/security.asc [^]
Contato: +55 19 3521-2289 ou INOC-DBA: 1251*830
-------------- Próxima Parte ----------
Um anexo em HTML foi limpo...
URL: <http://www.listas.unicamp.br/pipermail/security-l/attachments/20220824/a6cd4970/attachment.html>
Mais detalhes sobre a lista de discussão SECURITY-L