A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine.
CVSS Details
- CVSS 3.1 Base Score: 3.9
- CVSS 3.1 Vector: (CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N)
Covered by Rapid7
| Product | Vendor Advisory | Solution File | Added | Published |
|---|---|---|---|---|
| Alma_linux | alma-upgrade-open-vm-toolsalma-upgrade-open-vm-tools-desktopalma-upgrade-open-vm-tools-salt-minionalma-upgrade-open-vm-tools-sdmpalma-upgrade-open-vm-tools-test | Jul 17, 2023 | Jun 13, 2023 | |
| Alpine Linux | alpine-linux-upgrade-open-vm-tools | Aug 22, 2024 | Jun 13, 2023 | |
| Amazon Linux Ami 2 | amazon-linux-ami-2-upgrade-open-vm-toolsamazon-linux-ami-2-upgrade-open-vm-tools-debuginfoamazon-linux-ami-2-upgrade-open-vm-tools-desktopamazon-linux-ami-2-upgrade-open-vm-tools-develamazon-linux-ami-2-upgrade-open-vm-tools-salt-minionamazon-linux-ami-2-upgrade-open-vm-tools-sdmpamazon-linux-ami-2-upgrade-open-vm-tools-test | Jul 21, 2023 | Jun 13, 2023 | |
| Amazon_linux_2023 | amazon-linux-2023-upgrade-open-vm-toolsamazon-linux-2023-upgrade-open-vm-tools-debuginfoamazon-linux-2023-upgrade-open-vm-tools-debugsourceamazon-linux-2023-upgrade-open-vm-tools-desktopamazon-linux-2023-upgrade-open-vm-tools-desktop-debuginfoamazon-linux-2023-upgrade-open-vm-tools-develamazon-linux-2023-upgrade-open-vm-tools-salt-minionamazon-linux-2023-upgrade-open-vm-tools-sdmpamazon-linux-2023-upgrade-open-vm-tools-sdmp-debuginfoamazon-linux-2023-upgrade-open-vm-tools-testamazon-linux-2023-upgrade-open-vm-tools-test-debuginfo | Feb 17, 2025 | Jun 13, 2023 | |
| Centos_linux | — | centos-upgrade-open-vm-toolscentos-upgrade-open-vm-tools-debuginfocentos-upgrade-open-vm-tools-desktopcentos-upgrade-open-vm-tools-develcentos-upgrade-open-vm-tools-test | Jun 30, 2023 | Jun 13, 2023 |
| Debian | debian-upgrade-open-vm-tools | Aug 18, 2023 | Jun 13, 2023 | |
| Oracle_linux | — | oracle-linux-upgrade-open-vm-toolsoracle-linux-upgrade-open-vm-tools-desktoporacle-linux-upgrade-open-vm-tools-develoracle-linux-upgrade-open-vm-tools-salt-minionoracle-linux-upgrade-open-vm-tools-sdmporacle-linux-upgrade-open-vm-tools-test | Jun 30, 2023 | Jun 13, 2023 |
| Redhat_linux | redhat-upgrade-open-vm-toolsredhat-upgrade-open-vm-tools-debuginforedhat-upgrade-open-vm-tools-debugsourceredhat-upgrade-open-vm-tools-desktopredhat-upgrade-open-vm-tools-desktop-debuginforedhat-upgrade-open-vm-tools-develredhat-upgrade-open-vm-tools-salt-minionredhat-upgrade-open-vm-tools-sdmpredhat-upgrade-open-vm-tools-sdmp-debuginforedhat-upgrade-open-vm-tools-testredhat-upgrade-open-vm-tools-test-debuginfo | Jun 30, 2023 | Jun 13, 2023 | |
| Rocky_linux | rocky-upgrade-open-vm-toolsrocky-upgrade-open-vm-tools-debuginforocky-upgrade-open-vm-tools-debugsourcerocky-upgrade-open-vm-tools-desktoprocky-upgrade-open-vm-tools-desktop-debuginforocky-upgrade-open-vm-tools-salt-minionrocky-upgrade-open-vm-tools-sdmprocky-upgrade-open-vm-tools-sdmp-debuginforocky-upgrade-open-vm-tools-testrocky-upgrade-open-vm-tools-test-debuginfo | Mar 5, 2024 | Jun 13, 2023 | |
| Suse | — | suse-upgrade-libvmtools-develsuse-upgrade-libvmtools0suse-upgrade-open-vm-toolssuse-upgrade-open-vm-tools-desktopsuse-upgrade-open-vm-tools-salt-minionsuse-upgrade-open-vm-tools-sdmp | Jun 19, 2023 | Jun 13, 2023 |
| Ubuntu | ubuntu-pro-upgrade-open-vm-toolsubuntu-upgrade-open-vm-tools | Jul 28, 2023 | Jun 13, 2023 | |
| Vmware Photon_os | vmware-photon_os_update_tdnf | Jan 20, 2025 | Jun 13, 2023 | |
| Vmware Vmware Tools | vmware-tools-upgrade-latest | Jun 3, 2025 | Jun 11, 2023 |
Prioritise with Active Threat Intelligence
With curated Threat Intelligence, you can see which vulnerabilities truly put you at risk, prioritize what matters most, and act before attackers do.
Explore Intelligence Hub