Lucene search
RedHatRHSA-2023:7262HistoryNov 15, 2023 - 5:58 p.m.
(RHSA-2023:7262) Important: open-vm-tools security update
2023-11-1517:58:05
access.redhat.com
10
open-vm-tools
security update
saml token signature bypass
file descriptor hijack vulnerability
vmware tools
virtualization components
0.001 Low
EPSS
Percentile
45.0%
The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines.
Security Fix(es):
-
open-vm-tools: SAML token signature bypass (CVE-2023-34058)
-
open-vm-tools: file descriptor hijack vulnerability in the vmware-user-suid-wrapper (CVE-2023-34059)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | x86_64 | open-vm-tools-desktop | < 11.2.0-2.el8_4.4 | open-vm-tools-desktop-11.2.0-2.el8_4.4.x86_64.rpm |
| RedHat | 8 | x86_64 | open-vm-tools | < 11.2.0-2.el8_4.4 | open-vm-tools-11.2.0-2.el8_4.4.x86_64.rpm |
| RedHat | 8 | x86_64 | open-vm-tools-sdmp | < 11.2.0-2.el8_4.4 | open-vm-tools-sdmp-11.2.0-2.el8_4.4.x86_64.rpm |
| RedHat | 8 | x86_64 | open-vm-tools-desktop-debuginfo | < 11.2.0-2.el8_4.4 | open-vm-tools-desktop-debuginfo-11.2.0-2.el8_4.4.x86_64.rpm |
| RedHat | 8 | x86_64 | open-vm-tools-sdmp-debuginfo | < 11.2.0-2.el8_4.4 | open-vm-tools-sdmp-debuginfo-11.2.0-2.el8_4.4.x86_64.rpm |
| RedHat | 8 | x86_64 | open-vm-tools-debugsource | < 11.2.0-2.el8_4.4 | open-vm-tools-debugsource-11.2.0-2.el8_4.4.x86_64.rpm |
| RedHat | 8 | x86_64 | open-vm-tools-test-debuginfo | < 11.2.0-2.el8_4.4 | open-vm-tools-test-debuginfo-11.2.0-2.el8_4.4.x86_64.rpm |
| RedHat | 8 | x86_64 | open-vm-tools-debuginfo | < 11.2.0-2.el8_4.4 | open-vm-tools-debuginfo-11.2.0-2.el8_4.4.x86_64.rpm |
Related
ubuntu
ubuntu
Open VM Tools vulnerabilities
2023-10-31 00:00:00
Open VM Tools vulnerabilities
2023-12-06 00:00:00
nessus
nessus
Debian DSA-5543-1 : open-vm-tools - security update
2023-11-01 00:00:00
RHEL 9 : open-vm-tools (RHSA-2023:7267)
2023-11-15 00:00:00
SUSE SLES12 Security Update : open-vm-tools (SUSE-SU-2023:4228-1)
2023-10-28 00:00:00
redhat
redhat
(RHSA-2023:7263) Important: open-vm-tools security update
2023-11-15 17:58:52
(RHSA-2023:7261) Important: open-vm-tools security update
2023-11-15 17:53:56
(RHSA-2023:7279) Important: open-vm-tools security update
2023-11-15 19:00:21
openvas
openvas
Fedora: Security Advisory for open-vm-tools (FEDORA-2023-86a50ffc72)
2023-11-08 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:4228-1)
2023-10-30 00:00:00
Fedora: Security Advisory for open-vm-tools (FEDORA-2023-1ed0ec0035)
2023-11-08 00:00:00
osv
osv
open-vm-tools vulnerabilities
2023-12-06 09:43:32
Important: open-vm-tools security update
2023-11-15 00:00:00
open-vm-tools vulnerabilities
2023-10-31 14:47:07
almalinux
almalinux
Important: open-vm-tools security update
2023-11-15 00:00:00
Important: open-vm-tools security update
2023-11-15 00:00:00
freebsd
freebsd
open-vm-tools -- Multiple vulnerabilities
2023-10-26 00:00:00
rocky
rocky
open-vm-tools security update
2023-11-28 22:43:02
oraclelinux
oraclelinux
open-vm-tools security update
2023-11-16 00:00:00
open-vm-tools security update
2023-11-16 00:00:00
open-vm-tools security update
2023-11-21 00:00:00
debian
debian
[SECURITY] [DLA 3646-1] open-vm-tools security update
2023-11-05 22:18:02
[SECURITY] [DSA 5543-1] open-vm-tools security update
2023-10-31 19:29:14
amazon
amazon
Important: open-vm-tools
2023-10-30 23:59:00
fedora
fedora
[SECURITY] Fedora 39 Update: open-vm-tools-12.3.0-3.fc39
2023-11-08 01:27:44
[SECURITY] Fedora 37 Update: open-vm-tools-12.3.0-3.fc37
2023-11-08 01:21:13
[SECURITY] Fedora 38 Update: open-vm-tools-12.3.0-3.fc38
2023-11-08 01:40:15
centos
centos
open security update
2024-01-12 19:15:38
photon
photon
Important Photon OS Security Update - PHSA-2023-3.0-0675
2023-10-27 00:00:00
Important Photon OS Security Update - PHSA-2023-5.0-0127
2023-10-27 00:00:00
Important Photon OS Security Update - PHSA-2023-4.0-0499
2023-10-27 00:00:00
mageia
mageia
Updated open-vm-tools packages fix security vulnerabilities
2024-03-14 20:25:59
cvelist
cvelist
CVE-2023-34058
2023-10-27 04:53:09
CVE-2023-34059
2023-10-27 04:53:31
cbl_mariner
cbl_mariner
nvd
nvd
CVE-2023-34059
2023-10-27 05:15:39
CVE-2023-34058
2023-10-27 05:15:38
prion
prion
Design/Logic Flaw
2023-10-27 05:15:00
Security feature bypass
2023-10-27 05:15:00
debiancve
debiancve
CVE-2023-34059
2023-10-27 05:15:39
CVE-2023-34058
2023-10-27 05:15:38
ubuntucve
ubuntucve
CVE-2023-34059
2023-10-26 00:00:00
CVE-2023-34058
2023-10-26 00:00:00
f5
f5
K000138114 : open-vm-tools vulnerability CVE-2023-34058
2024-01-02 00:00:00
veracode
veracode
Privilege Escalation
2023-10-29 13:25:45
SAML Token Signature Bypass
2023-10-29 13:19:59
redhatcve
redhatcve
CVE-2023-34059
2023-10-30 13:43:17
CVE-2023-34058
2023-10-30 13:43:11
cve
cve
CVE-2023-34058
2023-10-27 05:15:38
CVE-2023-34059
2023-10-27 05:15:39
ibm
ibm
Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities
2024-01-17 10:00:35
