[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    [oss-security] [Security Advisory] open-vm-tools: SAML token signature bypass vulnerability (CVE-202
From:       VMware Security Response Center <security () vmware ! com>
Date:       2023-08-31 9:26:26
Message-ID: CH0PR05MB10203918AA236673B9B9CE00BB9E5A () CH0PR05MB10203 ! namprd05 ! prod ! outlook ! com
[Download RAW message or body]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256


Please see the security advisory here: \
https://www.vmware.com/security/advisories/VMSA-2023-0019.html 

Description
==============================================================
CVE-2023-20900: VMware Tools contains a SAML token signature bypass vulnerability. VMware has \
evaluated the severity of this issue to be in the Important severity range with a maximum \
CVSSv3.1 base score of 7.5 - CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H.

Known Attack Vectors
==============================================================
A malicious actor with man-in-the-middle (MITM) network positioning between vCenter server and \
the virtual machine may be able to bypass SAML token signature verification, to perform VMware \
Tools Guest Operations.

Upstream fix for CVE-2023-20900
==============================================================
https://github.com/vmware/open-vm-tools/blob/CVE-2023-20900.patch/CVE-2023-20900.patch
-----BEGIN PGP SIGNATURE-----

iHUEAREIAB0WIQQ950nPZL1VtgrpULuSf/JD335VcQUCZPBa5gAKCRCSf/JD335V
cZZTAP9QYJDWCzECKYakbqu4fui7CditlHnew0qs0KjG9qfC3QEA7wLPBfudDBkj
ivy2KsHabG03funx8dWl/x77TfFbUlI=
=sAT7
-----END PGP SIGNATURE-----
=


[prev in list] [next in list] [prev in thread] [next in thread]