vulnerability

Red Hat: CVE-2022-31676: local root privilege escalation in the virtual machine (Multiple Advisories)

Name: Red Hat: CVE-2022-31676: local root privilege escalation in the virtual machine (Multiple Advisories)
Creator: Red Hat
Published: 2022-08-23T00:00:00.000Z

Try Surface Command

Back to search

Severity

CVSS

(AV:L/AC:M/Au:S/C:C/I:C/A:C)

Published

Aug 23, 2022

Added

Oct 20, 2022

Modified

Jun 17, 2026

Description

VMware Tools (12.0.0, 11.x.y and 10.x.y) contains a local privilege escalation vulnerability. A malicious actor with local non-administrative access to the Guest OS can escalate privileges as a root user in the virtual machine.

Solutions

redhat-upgrade-open-vm-toolsredhat-upgrade-open-vm-tools-debuginforedhat-upgrade-open-vm-tools-debugsourceredhat-upgrade-open-vm-tools-desktopredhat-upgrade-open-vm-tools-desktop-debuginforedhat-upgrade-open-vm-tools-develredhat-upgrade-open-vm-tools-sdmpredhat-upgrade-open-vm-tools-sdmp-debuginforedhat-upgrade-open-vm-tools-testredhat-upgrade-open-vm-tools-test-debuginfo

References

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report