Vulnerability Name:

CVE-2022-31676 (CCN-234190)

Assigned:2022-08-23
Published:2022-08-23
Updated:2022-11-16
Summary:VMware Tools (12.0.0, 11.x.y and 10.x.y) contains a local privilege escalation vulnerability. A malicious actor with local non-administrative access to the Guest OS can escalate privileges as a root user in the virtual machine.
CVSS v3 Severity:7.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
6.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
7.0 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H)
6.1 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): High
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
7.0 High (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H)
6.1 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): High
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:6.0 Medium (CCN CVSS v2 Vector: AV:L/AC:H/Au:S/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): High
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-269
CWE-250
Vulnerability Consequences:Gain Privileges
References:Source: MITRE
Type: CNA
CVE-2022-31676

Source: MLIST
Type: Mailing List, Patch, Release Notes, Third Party Advisory
[oss-security] 20220823 [SECURITY ADVISORY] open-vm-tools: Local privilege escalation vulnerability (CVE-2022-31676)

Source: XF
Type: UNKNOWN
vmware-cve202231676-priv-esc(234190)

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20220825 [SECURITY] [DLA 3081-1] open-vm-tools security update

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2022-1b8d3b2845

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2022-cd23eac6f4

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2022-1c9c0bacaf

Source: GENTOO
Type: Third Party Advisory
GLSA-202210-27

Source: CONFIRM
Type: Third Party Advisory
https://security.netapp.com/advisory/ntap-20221017-0003/

Source: DEBIAN
Type: Third Party Advisory
DSA-5215

Source: CCN
Type: IBM Security Bulletin 6999317 (Security Guardium)
IBM Security Guardium is affected by multiple vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6999331 (QRadar SIEM)
IBM QRadar SIEM is vulnerable to privilege escalation (CVE-2022-31676)

Source: CCN
Type: VMware Security Advisory VMSA-2022-0024
VMware Tools update addresses a local privilege escalation vulnerability (CVE-2022-31676)

Source: MISC
Type: Release Notes, Vendor Advisory
https://www.vmware.com/security/advisories/VMSA-2022-0024.html

Vulnerable Configuration:Configuration 1:
  • cpe:/a:vmware:tools:*:*:*:*:*:*:*:* (Version >= 10.0.0 and < 12.1.0)
  • AND
  • cpe:/o:microsoft:windows:-:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/a:vmware:tools:*:*:*:*:*:*:*:* (Version >= 10.0.0 and < 10.3.25)
  • OR cpe:/a:vmware:tools:*:*:*:*:*:*:*:* (Version >= 11.0.0 and < 12.1.0)
  • AND
  • cpe:/o:linux:linux_kernel:-:*:*:*:*:*:*:*

    • Configuration 3:
  • cpe:/o:debian:debian_linux:10.0:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:11.0:*:*:*:*:*:*:*

    • Configuration 4:
  • cpe:/o:fedoraproject:fedora:36:*:*:*:*:*:*:*
  • OR cpe:/o:fedoraproject:fedora:37:*:*:*:*:*:*:*

    • Configuration 5:
  • cpe:/a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*

    • Configuration RedHat 1:
  • cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:*

    • Configuration RedHat 2:
  • cpe:/a:redhat:enterprise_linux:8::appstream:*:*:*:*:*

    • Configuration RedHat 3:
  • cpe:/a:redhat:enterprise_linux:9:*:*:*:*:*:*:*

    • Configuration RedHat 4:
  • cpe:/a:redhat:enterprise_linux:9::appstream:*:*:*:*:*

    • Configuration RedHat 5:
  • cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

    • Configuration RedHat 6:
  • cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

    • Configuration RedHat 7:
  • cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

    • Configuration RedHat 8:
  • cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

    • Configuration RedHat 9:
  • cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:ibm:security_guardium:11.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4.3:-:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_guardium:11.4:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:7693
    P
    		libvmtools-devel-12.2.0-150300.26.1 on GA media (Moderate)
    2023-06-12
    oval:org.opensuse.security:def:7972
    P
    		open-vm-tools-desktop-12.2.0-150300.26.1 on GA media (Moderate)
    2023-06-12
    oval:com.redhat.rhsa:def:20226381
    P
    		RHSA-2022:6381: open-vm-tools security update (Important)
    2022-09-07
    oval:com.redhat.rhsa:def:20226357
    P
    		RHSA-2022:6357: open-vm-tools security update (Important)
    2022-09-06
    oval:com.redhat.rhsa:def:20226358
    P
    		RHSA-2022:6358: open-vm-tools security update (Important)
    2022-09-06
    oval:org.opensuse.security:def:127353
    P
    		Security update for open-vm-tools (Important)
    2022-08-29
    oval:org.opensuse.security:def:6153
    P
    		Security update for open-vm-tools (Important)
    2022-08-29
    oval:org.opensuse.security:def:714
    P
    		Security update for open-vm-tools (Important)
    2022-08-29
    oval:org.opensuse.security:def:125792
    P
    		Security update for open-vm-tools (Important)
    2022-08-29
    oval:org.opensuse.security:def:126955
    P
    		Security update for open-vm-tools (Important)
    2022-08-29
    oval:org.opensuse.security:def:119726
    P
    		Security update for open-vm-tools (Important) (in QA)
    2022-08-26
    oval:org.opensuse.security:def:118779
    P
    		Security update for open-vm-tools (Important) (in QA)
    2022-08-26
    oval:org.opensuse.security:def:118969
    P
    		Security update for open-vm-tools (Important) (in QA)
    2022-08-26
    oval:org.opensuse.security:def:119274
    P
    		Security update for open-vm-tools (Important) (in QA)
    2022-08-26
    BACK
    vmware tools *
    microsoft windows -
    vmware tools *
    vmware tools *
    linux linux kernel -
    debian debian linux 10.0
    debian debian linux 11.0
    fedoraproject fedora 36
    fedoraproject fedora 37
    netapp ontap select deploy administration utility -
    ibm security guardium 11.3
    ibm qradar security information and event manager 7.4.3 -
    ibm security guardium 11.4