New local privilege escalation vulnerability in VMware Tools

New local privilege escalation vulnerability in VMware Tools

On August 23rd 2022, VMware confirmed an important-rated security vulnerability affecting VMware Tools. This local privilege escalation vulnerability impacts Open VM Tools as well.

Table of contents
1 VMware Tools vulnerability: CVE-2022-31676
2 Patches
3 References
4 VMware Tools

VMware Tools vulnerability: CVE-2022-31676

Identified as CVE-2022-31676, this VMware Tools vulnerability can allow a potential attacker with local non-administrative access to the guest operating system (virtual machine) to escalate privileges as a root user in the VM.

VMware has evaluated it as an important severity vulnerability with a maximum CVSSv3 base score of 7.0 out of 10.

It affects a priori the following versions:

  • 11.x.y and 12.x.y on Windows.
  • 10.x.y, 11.x.y and 12.x.y on Linux.

This local privilege escalation exploit can affect VMs housing important corporate data, user credentials and critical applications. Therefore, it is imperative to apply the patch matching the VM’s operating system and the VMware Tools version installed in the OS as soon as possible to avoid compromise.

VMware recommends the following updates:

VMware Tools versionUpdate to
Versions 12.x.y and 11.x.y on WindowsVersion 12.1.0
Versions 12.x.y and 11.x.y on LinuxVersion 12.1.0*
Version 10.x.y on LinuxVersion 10.3.25

*Fixed version 12.1.0 may differ based on the Linux distribution version and vendor (update from September 2, 2022).

Patches

**Linux vendors will distribute a version of open-vm-tools addressing this vulnerability (update from September 2, 2022).

References

VMware Tools

VMware Tools is a set of services and components that enable several features in certain VMware products. These tools are intended for improving management and ensuring seamless user interactions with guest OS.

There are different types of VMware Tools:

  • ISO images. A collection of ISO images containing installers that are mounted to virtual machines. Compatible with Windows, Linux (known as “tar tools”), Solaris, FreeBSD, Mac OS X, and other supported guests.
  • OS Specific Packages (OSP). Binary packages for particular Linux distributions. They are usually available for older releases.
  • Open VM Tools (OVT). The open source implementation of VMware Tools for Linux. Open VM Tools are usually included in recent versions of popular Linux distributions.

Share it on Social Media!

Related articles

Cookies customization
Stackscale, Grupo Aire logo

By allowing cookies, you voluntarily agree to the processing of your data. This also includes, for a limited period of time, your consent in accordance with the Article 49 (1) (a) GDPR in regard to the processing of data outside the EEA, for instead, in the USA. In these countries, despite the careful selection and obligation of service providers, the European high level of data protection cannot be guaranteed.

In case of the data being transferred to the USA, there is, for instance, the risk of USA authorities processing that data for control and supervision purposes without having effective legal resources available or without being able to enforce all the rights of the interested party. You can revoke your consent at any moment.

Necessary Cookies

Necessary cookies help make a web page usable by activating basic functions such as the page navigation and the access to secure areas in the web page. The web page will not be able to work properly without these cookies. We inform you about the possibility to set up your browser in order to block or alert about these cookies, however, it is possible that certain areas of the web page do not work. These cookies do not store any personal data.

- moove_gdpr_popup

 

Analytical cookies

Analytical cookies allow its Editor to track and analyze the websites’ users behavior. The information collected through this type of cookie is used for measuring the activity on websites, applications or platforms, as well as for building user navigation profiles for said websites, application or platform, in order to implement improvements based on the analysis of data on the usage of the service by users.

Google Analytics: It registers a single identification used to generate statistical data about how the visitor uses the website. The data generated by the cookie about the usage of this website is generally transferred to a Google server in the USA and stored there by Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.

- _dc_gtm_UA-XXXXXXXX-X

- _gat_gtag_UA_XXXXXXXX_X

- _ga

- _gcl_au

- _gid