QID 375665

Date Published: 2021-06-30

QID 375665: VMware Tools Local Privilege Escalation Vulnerability (VMSA-2021-0013)

VMware Tools is a suite of utilities that enhances the performance of the virtual machine guest operating system and improves management of the virtual machine running on VMware.

Affected Versions:
VMware Tools version from 11.0.0 prior to 11.2.6.

QID Detection Logic:(Authenticated)
It checks for vulnerable version of VMware tools.

An attacker with normal access to a virtual machine may exploit this issue by placing a malicious file renamed as `openssl.cnf' in an unrestricted directory which would allow code to be executed with elevated privileges.

CVSS V3 rated as High - 7.8 severity.

CVSS V2 rated as High - 7.2 severity.

Solution

To remediate this issue update to VMware Tools version VMware Tools 11.2.6
For more information please visit VMware advisory VMSA-2021-0013

Vendor References

VMSA-2021-0013 - www.vmware.com/security/advisories/VMSA-2021-0013.html

CVEs related to QID 375665

CVE-2021-21999 |

Software Advisories

Advisory ID	Software	Component	Link
VMware Tools for Windows 11.2.6			docs.vmware.com/en/VMware-Tools/11.2/rn/VMware-Tools-1126-Release-Notes.html

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].

Array ( [qid] => 375665 [title] => VMware Tools Local Privilege Escalation Vulnerability (VMSA-2021-0013) [severity] => 3 [description] => VMware Tools is a suite of utilities that enhances the performance of the virtual machine guest operating system and improves management of the virtual machine running on VMware.

Affected Versions:
VMware Tools version from 11.0.0 prior to 11.2.6.

QID Detection Logic:(Authenticated)
It checks for vulnerable version of VMware tools. [solution] => To remediate this issue update to VMware Tools version VMware Tools 11.2.6
For more information please visit VMware advisory VMSA-2021-0013 [consequence] => An attacker with normal access to a virtual machine may exploit this issue by placing a malicious file renamed as `openssl.cnf' in an unrestricted directory which would allow code to be executed with elevated privileges. [published] => Yes [date_insert] => 2021-06-29 [date_published] => 2021-06-30 [cve] => Array ( [0] => CVE-2021-21999 ) [vendor_refs] => Array ( [0] => Array ( [vendor_ref] => VMSA-2021-0013 [vendor_ref_url] => https://www.vmware.com/security/advisories/VMSA-2021-0013.html ) ) [cvss_v2] => Array ( [basescore] => 7.2 [temporalscore] => 5.3 ) [cvss_v3] => Array ( [basescore] => 7.8 [temporalscore] => 6.8 ) [patches] => Array ( [0] => Array ( [link] => https://docs.vmware.com/en/VMware-Tools/11.2/rn/VMware-Tools-1126-Release-Notes.html [advisory_id] => VMware Tools for Windows 11.2.6 [os_sw] => [component] => ) ) )