CVE-2023-34059

2023-10-2705:15:39

Debian Security Bug Tracker

security-tracker.debian.org

file descriptor hijack

non-root privileges

user inputs simulation

unix

7.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

open-vm-tools contains a file descriptor hijack vulnerability in the vmware-user-suid-wrapper. A malicious actor with non-root privileges may be able to hijack the /dev/uinput file descriptor allowing them to simulate user inputs.

OSVersionArchitecturePackageVersionFilename
Debian12allopen-vm-tools< 2:12.2.0-1+deb12u2open-vm-tools_2:12.2.0-1+deb12u2_all.deb
Debian11allopen-vm-tools< 2:11.2.5-2+deb11u3open-vm-tools_2:11.2.5-2+deb11u3_all.deb
Debian10allopen-vm-tools< 2:10.3.10-1+deb10u6open-vm-tools_2:10.3.10-1+deb10u6_all.deb
Debian999allopen-vm-tools< 2:12.3.5-1open-vm-tools_2:12.3.5-1_all.deb
Debian13allopen-vm-tools< 2:12.3.5-1open-vm-tools_2:12.3.5-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	open-vm-tools	< 2:12.2.0-1+deb12u2	open-vm-tools_2:12.2.0-1+deb12u2_all.deb
Debian	11	all	open-vm-tools	< 2:11.2.5-2+deb11u3	open-vm-tools_2:11.2.5-2+deb11u3_all.deb
Debian	10	all	open-vm-tools	< 2:10.3.10-1+deb10u6	open-vm-tools_2:10.3.10-1+deb10u6_all.deb
Debian	999	all	open-vm-tools	< 2:12.3.5-1	open-vm-tools_2:12.3.5-1_all.deb
Debian	13	all	open-vm-tools	< 2:12.3.5-1	open-vm-tools_2:12.3.5-1_all.deb