Ubuntu: (Multiple Advisories) (CVE-2023-34059): Open VM Tools vulnerabilities

发布于3月6日3月6日

Members

Ubuntu: (Multiple Advisories) (CVE-2023-34059): Open VM Tools vulnerabilities

Severity

CVSS

(AV:L/AC:M/Au:S/C:C/I:C/A:C)

Published

10/27/2023

Created

11/01/2023

Added

11/01/2023

Modified

01/28/2025

Description

open-vm-tools contains a file descriptor hijack vulnerability in the vmware-user-suid-wrapper. A malicious actor with non-root privileges may be able to hijack the /dev/uinput file descriptor allowing them to simulate user inputs.

Solution(s)

ubuntu-pro-upgrade-open-vm-tools
ubuntu-pro-upgrade-open-vm-tools-desktop

References

https://attackerkb.com/topics/cve-2023-34059
CVE - 2023-34059
USN-6463-1
USN-6463-2

引用

Mention

查看数 704
已创建 3月6日3月6日
最后回复 3月6日3月6日

参与讨论

你可立刻发布并稍后注册。如果你有帐户，立刻登录发布帖子。
注意：你的帖子需要版主批准后才能看到。

https://www.ishack.org/topic/22450.html/

粉丝

转到主题列表

登录

Ubuntu: (Multiple Advisories) (CVE-2023-34059): Open VM Tools vulnerabilities

recommended_posts

Ubuntu: (Multiple Advisories) (CVE-2023-34059): Open VM Tools vulnerabilities

Description

Solution(s)

References

参与讨论

欢迎来到红帽社区

帐户

导航

搜索