Rewterz Threat Alert – Russian APT Group ‘Winter Vivern’ Exploits Zero-Day in Roundcube Webmail – Active IOCs
October 27, 2023Rewterz Threat Advisory – Multiple Apple Safari Vulnerabilities
October 27, 2023Rewterz Threat Alert – Russian APT Group ‘Winter Vivern’ Exploits Zero-Day in Roundcube Webmail – Active IOCs
October 27, 2023Rewterz Threat Advisory – Multiple Apple Safari Vulnerabilities
October 27, 2023Severity
High
Analysis Summary
CVE-2023-34058 CVSS:7.5
VMware Tools could allow a remote attacker to gain elevated privileges on the system, caused by a SAML token signature bypass flaw. By sending a specially crafted request, an attacker could exploit this vulnerability to gain elevate privileges within the virtual machine.
CVE-2023-34057 CVSS:7.8
VMware Tools could allow a local authenticated attacker to gain elevated privileges on the system, caused by an unspecified flaw. By sending a specially crafted request, an authenticated attacker could exploit this vulnerability to gain elevate privileges within the virtual machine.
Impact
- Privileges Escalation
Indicators Of Compromise
CVE
- CVE-2023-34058
- CVE-2023-34057
Affected Vendors
VMware
Affected Products
- VMware Tools 11
- VMware Tools 12
- VMware Tools 10.3
Remediation
Refer to VMware Security Advisory for patch, upgrade or suggested workaround information.