• Tenable
  • CVEs
  • Settings
    Links
    Tenable.io Tenable Community & Support Tenable University
    Severity
    Theme
  • Tenable
  • Links
  • Tenable.io
  • Tenable Community & Support
  • Tenable University
  • Settings
  • Severity
  • Theme
  • Newest
  • Updated
  • Search
  • Newest
  • Updated
  • Search
  1. CVEs
  2. CVE-2022-31676
  1. CVEs

CVE-2022-31676

high
  • Information
  • CPEs
  • Plugins

Description

VMware Tools (12.0.0, 11.x.y and 10.x.y) contains a local privilege escalation vulnerability. A malicious actor with local non-administrative access to the Guest OS can escalate privileges as a root user in the virtual machine.

References

https://www.vmware.com/security/advisories/VMSA-2022-0024.html

http://www.openwall.com/lists/oss-security/2022/08/23/3

https://www.debian.org/security/2022/dsa-5215

https://lists.debian.org/debian-lts-announce/2022/08/msg00013.html

https://lists.fedoraproject.org/archives/list/[email protected]/message/O4TZF6QRJIDECGMEGBPXJCHZ6YC3VZ6Z/

https://lists.fedoraproject.org/archives/list/[email protected]/message/C5VV2R4LV4T3SNQJYRLFD4C75HBDVV76/

https://lists.fedoraproject.org/archives/list/[email protected]/message/ZA63DWRW7HROTVBNRIPBJQWBYIYAQMEW/

https://security.netapp.com/advisory/ntap-20221017-0003/

https://security.gentoo.org/glsa/202210-27

Details

Source: MITRE

Published: 2022-08-23

Updated: 2022-11-16

Type: CWE-269

  • Tenable.com
  • Community & Support
  • Documentation
  • Education
  • © 2023 Tenable®, Inc. All Rights Reserved
  • Privacy Policy
  • Legal
  • 508 Compliance