CVE-2023-20900

CVE-2023-20900 is a vulnerability in Open VMware Tools (open-vm-tools) where a malicious actor with Guest Operation Privileges may elevate to a higher privilege via a more-privileged Guest Alias in the VM. The connected documents confirm Open VM Tools is affected and describe a SAML token signatu...

CVE-2023-34058

CVE-2023-34058 affects open-vm-tools/VMware Tools. A SAML token signature bypass in VMware Tools can enable privilege elevation when a VM’s Guest Operation Privileges and a higher-privilege Guest Alias are involved. Multiple connected advisories confirm open-vm-tools as the affected component acr...

CVE-2023-34059

CVE-2023-34059 is a local, high-severity vulnerability in open-vm-tools’ vmware-user-suid-wrapper that can hijack the /dev/uinput file descriptor to simulate user inputs. It affects multiple Linux distributions (e.g., Debian, Red Hat/CentOS, AlmaLinux/AlmaLinux, Amazon Linux 2/2023), with advisor...

CVE-2025-41244

CVE-2025-41244 covers a local privilege-escalation in Open VM Tools used with VMware Aria Operations; a non-administrative local user with access to a VM that has VMware Tools (SDMP enabled) can escalate to root within the same VM. Affected component: open-vm-tools bundled with VMware Tools; root...

CVE-2009-1142

CVE-2009-1142 affects open-vm-tools version 2009.03.18-154848. The vulnerability arises when the vmware-user-suid-wrapper is setuid root and the ChmodChownDirectory function is enabled, allowing a local attacker to perform a symlink attack on files in /tmp to gain privileges. Multiple connected s...