<div dir="ltr"><div><div class="gmail-col-md-8">
<div class="gmail-sa-details">
<div class="gmail-sa-row-group">
<label>Prezados. Bom dia.</label></div><div class="gmail-sa-row-group"><label>Segue notificação sobre vulnerabilidades no VMware Tools.</label></div><div class="gmail-sa-row-group"><label><br></label></div><div class="gmail-sa-row-group"><label>Advisory ID:</label>
<span>VMSA-2022-0024</span>
</div>
<div class="gmail-sa-row-group">
<label>CVSSv3 Range:</label>
<span>7.0</span>
</div>
<div class="gmail-sa-row-group">
<label>Issue Date:</label>
<span>2022-08-23</span>
</div>
<div class="gmail-sa-row-group">
<label>Updated On:</label>
<span>2022-08-23 (Initial Advisory)</span>
</div>
<div class="gmail-sa-row-group">
<label>CVE(s):</label>
<span>CVE-2022-31676</span>
</div>
<div class="gmail-sa-row-group">
<label>Synopsis:</label>
<span>VMware Tools update addresses a local privilege escalation vulnerability (CVE-2022-31676)</span></div><div class="gmail-sa-row-group"><span><br></span></div><div class="gmail-sa-row-group"><div class="gmail-secadvheading gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-container">
<div class="gmail-content">
<div class="gmail-row">
<div class="gmail-col-md-12">
<h5 class="gmail-mt-30"><b>1. Impacted Products</b></h5>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-text gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-cmp-text">
<div class="gmail-nested-filtered-table gmail-active" id="gmail-filter-10">
<div class="gmail-container">
<div class="gmail-row">
<div class="gmail-col-md-12">
<div class="gmail-container gmail-text-container">
<div class="gmail-row">
<div class="gmail-col-md-12 gmail-no-padd">
<ul><li>VMware Tools</li></ul>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-secadvheading gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-container">
<div class="gmail-content">
<div class="gmail-row">
<div class="gmail-col-md-12">
<h5 class="gmail-mt-30"><b>2. Introduction</b></h5>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-text gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-cmp-text">
<div class="gmail-nested-filtered-table gmail-active" id="gmail-filter-11">
<div class="gmail-container">
<div class="gmail-row">
<div class="gmail-col-md-12">
<div class="gmail-container gmail-text-container">
<div class="gmail-row">
<div class="gmail-col-md-12 gmail-no-padd">
<p>VMware Tools was impacted by a local
privilege escalation vulnerability. Updates are available to remediate
this vulnerability in affected VMware products.</p>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-secadvheading gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-container">
<div class="gmail-content">
<div class="gmail-row">
<div class="gmail-col-md-12">
<h5 class="gmail-mt-30"><b>3. Local privilege escalation vulnerability (CVE-2022-31676)</b></h5>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-secadvheading gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-container">
<div class="gmail-content">
<div class="gmail-row">
<div class="gmail-col-md-12">
<p class="gmail-mt-15"><b>Description</b></p>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-text gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-cmp-text">
<div class="gmail-nested-filtered-table gmail-active" id="gmail-filter-12">
<div class="gmail-container">
<div class="gmail-row">
<div class="gmail-col-md-12">
<div class="gmail-container gmail-text-container">
<div class="gmail-row">
<div class="gmail-col-md-12 gmail-no-padd">
<p>VMware Tools contains a local privilege escalation vulnerability. VMware has evaluated the severity of this issue to be in the <a href="https://www.vmware.com/support/policies/security_response.html">Important severity range</a> with a maximum CVSSv3 base score of <a href="https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H">7.0</a>.</p>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-secadvheading gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-container">
<div class="gmail-content">
<div class="gmail-row">
<div class="gmail-col-md-12">
<p class="gmail-mt-15"><b>Known Attack Vectors</b></p>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-text gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-cmp-text">
<div class="gmail-nested-filtered-table gmail-active" id="gmail-filter-13">
<div class="gmail-container">
<div class="gmail-row">
<div class="gmail-col-md-12">
<div class="gmail-container gmail-text-container">
<div class="gmail-row">
<div class="gmail-col-md-12 gmail-no-padd">
<p>A malicious actor with local
non-administrative access to the Guest OS can escalate privileges as a
root user in the virtual machine.</p>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-secadvheading gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-container">
<div class="gmail-content">
<div class="gmail-row">
<div class="gmail-col-md-12">
<p class="gmail-mt-15"><b>Resolution</b></p>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-text gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-cmp-text">
<div class="gmail-nested-filtered-table gmail-active" id="gmail-filter-14">
<div class="gmail-container">
<div class="gmail-row">
<div class="gmail-col-md-12">
<div class="gmail-container gmail-text-container">
<div class="gmail-row">
<div class="gmail-col-md-12 gmail-no-padd">
<p>To remediate CVE-2022-31676 apply the patches listed in the 'Fixed Version' column of the 'Response Matrix' found below.</p>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-secadvheading gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-container">
<div class="gmail-content">
<div class="gmail-row">
<div class="gmail-col-md-12">
<p class="gmail-mt-15"><b>Workarounds</b></p>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-text gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-cmp-text">
<div class="gmail-nested-filtered-table gmail-active" id="gmail-filter-15">
<div class="gmail-container">
<div class="gmail-row">
<div class="gmail-col-md-12">
<div class="gmail-container gmail-text-container">
<div class="gmail-row">
<div class="gmail-col-md-12 gmail-no-padd">
<p>None.</p>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-secadvheading gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-container">
<div class="gmail-content">
<div class="gmail-row">
<div class="gmail-col-md-12">
<p class="gmail-mt-15"><b>Additional Documentation</b></p>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-text gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-cmp-text">
<div class="gmail-nested-filtered-table gmail-active" id="gmail-filter-16">
<div class="gmail-container">
<div class="gmail-row">
<div class="gmail-col-md-12">
<div class="gmail-container gmail-text-container">
<div class="gmail-row">
<div class="gmail-col-md-12 gmail-no-padd">
<p>None.</p>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-secadvheading gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-container">
<div class="gmail-content">
<div class="gmail-row">
<div class="gmail-col-md-12">
<p class="gmail-mt-15"><b>Notes</b></p>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-text gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-cmp-text">
<div class="gmail-nested-filtered-table gmail-active" id="gmail-filter-17">
<div class="gmail-container">
<div class="gmail-row">
<div class="gmail-col-md-12">
<div class="gmail-container gmail-text-container">
<div class="gmail-row">
<div class="gmail-col-md-12 gmail-no-padd">
<p>VMware Tools 10.3.25 only applies to the older Linux releases.</p>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-secadvheading gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-container">
<div class="gmail-content">
<div class="gmail-row">
<div class="gmail-col-md-12">
<p class="gmail-mt-15"><b>Acknowledgements</b></p>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-text gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-cmp-text">
<div class="gmail-nested-filtered-table gmail-active" id="gmail-filter-18">
<div class="gmail-container">
<div class="gmail-row">
<div class="gmail-col-md-12">
<div class="gmail-container gmail-text-container">
<div class="gmail-row">
<div class="gmail-col-md-12 gmail-no-padd">
<p>None.<br>
</p>
<p> </p>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-secadvheading gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-container">
<div class="gmail-content">
<div class="gmail-row">
<div class="gmail-col-md-12">
<p class="gmail-mt-15"><b>Response Matrix</b></p>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-advisories-data gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-container">
<div class="gmail-content">
<div class="gmail-row">
<div class="gmail-col-md-12">
<div class="gmail-section-custom">
<div class="gmail-table-responsive">
<table class="gmail-table">
<tbody><tr class="gmail-tr gmail-thead">
<td class="gmail-td">Product</td>
<td class="gmail-td">Version</td>
<td class="gmail-td">Running On</td>
<td class="gmail-td">CVE Identifier</td>
<td class="gmail-td">CVSSv3</td>
<td class="gmail-td">Severity</td>
<td class="gmail-td">Fixed Version</td>
<td class="gmail-td">Workarounds</td>
<td class="gmail-td">Additional Documentation</td>
</tr>
<tr class="gmail-tr">
<td class="gmail-td">
<div class="gmail-td-content">VMware Tools </div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">12.x.y, 11.x.y </div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">Windows</div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">CVE-2022-31676</div>
</td>
<td class="gmail-td">
<div class="gmail-td-content"><a aria-label="7.0" href="https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H">7.0</a></div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">
<div class="gmail-sa-severity-blk">important</div>
<span class="gmail-sa-severity gmail-sa-important"></span>
</div>
</td>
<td class="gmail-td">
<div class="gmail-td-content"><a aria-label="12.1.0" href="https://docs.vmware.com/en/VMware-Tools/12.1/rn/VMware-Tools-1210-Release-Notes.html">12.1.0</a></div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">None</div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">None</div>
</td>
</tr>
<tr class="gmail-tr">
<td class="gmail-td">
<div class="gmail-td-content">VMware Tools </div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">12.x.y, 11.x.y</div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">Linux</div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">CVE-2022-31676</div>
</td>
<td class="gmail-td">
<div class="gmail-td-content"><a aria-label="7.0" href="https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H">7.0</a></div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">
<div class="gmail-sa-severity-blk">important</div>
<span class="gmail-sa-severity gmail-sa-important"></span>
</div>
</td>
<td class="gmail-td">
<div class="gmail-td-content"><a aria-label="12.1.0" href="https://docs.vmware.com/en/VMware-Tools/12.1/rn/VMware-Tools-1210-Release-Notes.html">12.1.0</a></div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">None</div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">None</div>
</td>
</tr>
<tr class="gmail-tr">
<td class="gmail-td">
<div class="gmail-td-content">VMware Tools </div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">10.x.y</div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">Linux</div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">CVE-2022-31676</div>
</td>
<td class="gmail-td">
<div class="gmail-td-content"><a aria-label="7.0" href="https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H">7.0</a></div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">
<div class="gmail-sa-severity-blk">important</div>
<span class="gmail-sa-severity gmail-sa-important"></span>
</div>
</td>
<td class="gmail-td">
<div class="gmail-td-content"><a aria-label="10.3.25" href="https://docs.vmware.com/en/VMware-Tools/10.3/rn/VMware-Tools-10325-Release-Notes.html">10.3.25</a></div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">None</div>
</td>
<td class="gmail-td">
<div class="gmail-td-content">None</div>
</td>
</tr>
</tbody></table>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-secadvheading gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-container">
<div class="gmail-content">
<div class="gmail-row">
<div class="gmail-col-md-12">
<h5 class="gmail-mt-30"><b>4. References</b></h5>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-text gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-cmp-text">
<div class="gmail-nested-filtered-table gmail-active" id="gmail-filter-19">
<div class="gmail-container">
<div class="gmail-row">
<div class="gmail-col-md-12">
<div class="gmail-container gmail-text-container">
<div class="gmail-row">
<div class="gmail-col-md-12 gmail-no-padd">
<p>Fixed Version(s) and Release Notes:</p>
<p>VMware Tools 12.1.0</p>
<p>Downloads and Documentation:</p>
<p><a href="https://customerconnect.vmware.com/downloads/details?downloadGroup=VMTOOLS1210&productId=1259&rPId=92824" name="&lpos=content_security : 306">https://customerconnect.vmware.com/downloads/details?downloadGroup=VMTOOLS1210&productId=1259&rPId=92824</a></p>
<p><a href="https://docs.vmware.com/en/VMware-Tools/12.1/rn/VMware-Tools-1210-Release-Notes.html">https://docs.vmware.com/en/VMware-Tools/12.1/rn/VMware-Tools-1210-Release-Notes.html</a></p>
<p>VMware Tools 10.3.25</p>
<p><a href="https://customerconnect.vmware.com/downloads/details?downloadGroup=VMTOOLS10325&productId=1072&rPId=92945">https://customerconnect.vmware.com/downloads/details?downloadGroup=VMTOOLS10325&productId=1072&rPId=92945</a></p>
<p><a href="https://docs.vmware.com/en/VMware-Tools/10.3/rn/VMware-Tools-10325-Release-Notes.html">https://docs.vmware.com/en/VMware-Tools/10.3/rn/VMware-Tools-10325-Release-Notes.html</a></p>
<p>Mitre CVE Dictionary Links:</p>
<p><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31676">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31676</a></p>
<p>FIRST CVSSv3 Calculator:</p>
<p>CVE-2022-31676: <a href="https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H">https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H</a></p>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-secadvheading gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-container">
<div class="gmail-content">
<div class="gmail-row">
<div class="gmail-col-md-12">
<h5 class="gmail-mt-30"><b>5. Change Log</b></h5>
</div>
</div>
</div>
</div>
</div>
<div class="gmail-text gmail-aem-GridColumn gmail-aem-GridColumn--default--12">
<div class="gmail-cmp-text">
<div class="gmail-nested-filtered-table gmail-active" id="gmail-filter-20">
<div class="gmail-container">
<div class="gmail-row">
<div class="gmail-col-md-12">
<div class="gmail-container gmail-text-container">
<div class="gmail-row">
<div class="gmail-col-md-12 gmail-no-padd">
<p><b>2022-08-23 VMSA-2022-0024<br>
</b>Initial security advisory.</p>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div><span></span>
</div>
</div>
</div></div><div><br></div><div><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div>===</div><div>Computer Security Incident Response Team - CSIRT</div><div>Universidade Estadual de Campinas - Unicamp</div><div>Centro de Computacao - CCUEC</div><div>GnuPG Public Key: <a href="http://www.security.unicamp.br/security.asc" target="_blank">http://www.security.unicamp.br/security.asc</a> [^]</div><div>Contato: +55 19 3521-2289 ou INOC-DBA: 1251*830</div></div></div></div></div>