The vulnerability of the sssd component in the basic operating system of the Photon OS platform, which is used for managing cloud storage solutions like VMware Cloud Director, allows a hacker to gain increased privileges.

🗓️ 20 Nov 2023 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

Photon OS SSSD vulnerability enables authentication bypass and privilege escalation in cloud storage.

Reporter	Title	Published	Views	Family All 28
0day.today	VMware Cloud Director - Bypass identity verification Exploit	8 Dec 202300:00	–	zdt
0day.today	VMware Cloud Director 10.5 - Bypass identity verification Exploit	12 Mar 202400:00	–	zdt
Circl	CVE-2023-34060	15 Nov 202305:23	–	circl
CISA	VMware Releases Security Update for Cloud Director Appliance	14 Nov 202312:00	–	cisa
CNNVD	VMware Cloud Director Security Vulnerability	14 Nov 202300:00	–	cnnvd
CVE	CVE-2023-34060	14 Nov 202320:20	–	cve
Cvelist	CVE-2023-34060	14 Nov 202320:20	–	cvelist
Exploit DB	VMware Cloud Director 10.5 - Bypass identity verification	12 Mar 202400:00	–	exploitdb
EUVD	EUVD-2023-38174	3 Oct 202520:07	–	euvd
Hive Pro Threat Advisories	VMware Unveils Critical Authentication Bypass Vulnerability in VCD Appliance	17 Nov 202308:07	–	hivepro

Vulners

Node

broadcom vmware_cloud_directorRange<10.5

Source	Link
vuldb	www.vuldb.com/
vmware	www.vmware.com/security/advisories/VMSA-2023-0026.html
web	www.web.nvd.nist.gov/view/vuln/detail
vmware	www.vmware.com/security/advisories/VMSA-2023-0026.html

20 Nov 2023 00:00Current

8High risk

Vulners AI Score8

CVSS 39.8

CVSS 210

EPSS0.00087

photon os system security daemon authentication bypass privilege escalation cloud storage vmware cloud director