3.9 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N
0.005 Low
EPSS
Percentile
76.6%
Software: open-vm-tools 11.0.5
OS: rosa-server79
package_evr_string: open-vm-tools-11.0.5-3.res7.6
CVE-ID: CVE-2023-20867
BDU-ID: 2023-03162
CVE-Crit: LOW
CVE-DESC.: A vulnerability in the vgauth module of the VMware Tools component of the VMware ESXi hypervisor is related to errors in the authentication procedure. Exploitation of the vulnerability could allow an attacker to impact the confidentiality and integrity of protected information
CVE-STATUS: Resolved
CVE-REV: To close, run the yum update open-vm-tools command