CVE & CISA-KEV Catalog

CVE-2023-20900

HIGH
7.1
CVSS v3
NVD

Description

A malicious actor that has been granted Guest Operation Privileges https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/GUID-6A952214-0E5E-4CCF-9D2A-90948FF643EC.html in a target virtual machine may be able to elevate their privileges if that target virtual machine has been assigned a more privileged Guest Alias https://vdc-download.vmware.com/vmwb-repository/dcr-public/d1902b0e-d479-46bf-8ac9-cee0e31e8ec0/07ce8dbd-db48-4261-9b8f-c6d3ad8ba472/vim.vm.guest.AliasManager.html .

How to fix

Remediation Available
open-vm-toolsDebian
Fixed in:2:11.2.5-2+deb11u2CVE-2023-20900
Fixed in:2:12.2.0-1+deb12u1CVE-2023-20900
Fixed in:2:12.3.0-1CVE-2023-20900
Fixed in:2:12.3.0-1CVE-2023-20900
open-vm-toolsRocky
Fixed in:0:10.3.0-2.el7_7.3RHSA-2024:5315
Fixed in:0:10.3.0-2.el7_7.3RHSA-2024:5315
Fixed in:0:11.0.5-3.el7_9.7RHSA-2023:5217
Fixed in:0:11.0.5-3.el7_9.7RHSA-2023:5217
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:11.0.0-4.el8_2.3RHSA-2023:5210
Fixed in:0:11.0.0-4.el8_2.3RHSA-2023:5210
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:10.3.10-3.el8_1.4RHSA-2023:5213
Fixed in:0:10.3.10-3.el8_1.4RHSA-2023:5213
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
open-vm-toolsRed Hat / RHEL
Fixed in:0:10.3.0-2.el7_7.3RHSA-2024:5315
Fixed in:0:11.0.5-3.el7_9.7RHSA-2023:5217
Fixed in:0:10.3.0-2.el7_7.3RHSA-2024:5315
Fixed in:0:11.0.5-3.el7_9.7RHSA-2023:5217
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:11.0.0-4.el8_2.3RHSA-2023:5210
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:11.0.0-4.el8_2.3RHSA-2023:5210
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:10.3.10-3.el8_1.4RHSA-2023:5213
Fixed in:0:10.3.10-3.el8_1.4RHSA-2023:5213
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
open-vm-tools-debuginfoRocky
Fixed in:0:11.0.5-3.el7_9.7RHSA-2023:5217
Fixed in:0:10.3.0-2.el7_7.3RHSA-2024:5315
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:10.3.10-3.el8_1.4RHSA-2023:5213
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:11.0.0-4.el8_2.3RHSA-2023:5210
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
open-vm-tools-debuginfoRed Hat / RHEL
Fixed in:0:10.3.0-2.el7_7.3RHSA-2024:5315
Fixed in:0:11.0.5-3.el7_9.7RHSA-2023:5217
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:10.3.10-3.el8_1.4RHSA-2023:5213
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:11.0.0-4.el8_2.3RHSA-2023:5210
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
open-vm-tools-debugsourceRed Hat / RHEL
Fixed in:0:10.3.10-3.el8_1.4RHSA-2023:5213
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:11.0.0-4.el8_2.3RHSA-2023:5210
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
open-vm-tools-debugsourceRocky
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:11.0.0-4.el8_2.3RHSA-2023:5210
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:10.3.10-3.el8_1.4RHSA-2023:5213
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
open-vm-tools-desktopRed Hat / RHEL
Fixed in:0:11.0.5-3.el7_9.7RHSA-2023:5217
Fixed in:0:10.3.0-2.el7_7.3RHSA-2024:5315
Fixed in:0:11.0.0-4.el8_2.3RHSA-2023:5210
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:10.3.10-3.el8_1.4RHSA-2023:5213
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
open-vm-tools-desktopRocky
Fixed in:0:11.0.5-3.el7_9.7RHSA-2023:5217
Fixed in:0:10.3.0-2.el7_7.3RHSA-2024:5315
Fixed in:0:10.3.10-3.el8_1.4RHSA-2023:5213
Fixed in:0:11.0.0-4.el8_2.3RHSA-2023:5210
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
open-vm-tools-desktop-debuginfoRed Hat / RHEL
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:10.3.10-3.el8_1.4RHSA-2023:5213
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:11.0.0-4.el8_2.3RHSA-2023:5210
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
open-vm-tools-desktop-debuginfoRocky
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:10.3.10-3.el8_1.4RHSA-2023:5213
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:11.0.0-4.el8_2.3RHSA-2023:5210
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
open-vm-tools-develRed Hat / RHEL
Fixed in:0:10.3.0-2.el7_7.3RHSA-2024:5315
Fixed in:0:11.0.5-3.el7_9.7RHSA-2023:5217
open-vm-tools-develRocky
Fixed in:0:10.3.0-2.el7_7.3RHSA-2024:5315
Fixed in:0:11.0.5-3.el7_9.7RHSA-2023:5217
open-vm-tools-salt-minionRocky
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
open-vm-tools-salt-minionRed Hat / RHEL
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
open-vm-tools-sdmpRed Hat / RHEL
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
open-vm-tools-sdmpRocky
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
open-vm-tools-sdmp-debuginfoRocky
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
open-vm-tools-sdmp-debuginfoRed Hat / RHEL
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
open-vm-tools-testRocky
Fixed in:0:11.0.5-3.el7_9.7RHSA-2023:5217
Fixed in:0:10.3.0-2.el7_7.3RHSA-2024:5315
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
open-vm-tools-testRed Hat / RHEL
Fixed in:0:11.0.5-3.el7_9.7RHSA-2023:5217
Fixed in:0:10.3.0-2.el7_7.3RHSA-2024:5315
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
open-vm-tools-test-debuginfoRocky
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:10.3.10-3.el8_1.4RHSA-2023:5213
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:11.0.0-4.el8_2.3RHSA-2023:5210
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
open-vm-tools-test-debuginfoRed Hat / RHEL
Fixed in:0:12.1.5-2.el8_8.3RHSA-2023:5312
Fixed in:0:10.3.10-3.el8_1.4RHSA-2023:5213
Fixed in:0:11.2.0-2.el8_4.3RHSA-2023:5216
Fixed in:0:11.3.5-1.el8_6.4RHSA-2023:5220
Fixed in:0:11.0.0-4.el8_2.3RHSA-2023:5210
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:12.1.5-1.el9_2.3RHSA-2023:5313
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
Fixed in:0:11.3.5-1.el9_0.4RHSA-2023:5218
open-vm-toolsUbuntu
Fixed in:2:10.2.0-3~ubuntu0.16.04.1+esm3USN-6365-2
Fixed in:2:11.0.5-4ubuntu0.18.04.3+esm2USN-6365-2
Fixed in:2:11.3.0-2ubuntu0~ubuntu20.04.6USN-6365-1
Fixed in:2:12.1.5-3~ubuntu0.22.04.3USN-6365-1
Fixed in:2:12.1.5-3ubuntu0.23.04.2USN-6365-1

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorAdjacent
Attack ComplexityHigh
Privileges RequiredLow
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityHigh
IntegrityHigh
AvailabilityHigh

CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploit Intelligence

1.19%probability of exploitation in 30 days
64thpercentile

Moderate risk: more likely to be exploited than 64% of all known CVEs.

References

Embed a live status badge for CVE-2023-20900
CVE-2023-20900 severity badge

Markdown

[![CVE-2023-20900](https://tridentstack.com/cve/badge/CVE-2023-20900.svg)](https://tridentstack.com/cve/CVE-2023-20900)

HTML

<a href="https://tridentstack.com/cve/CVE-2023-20900"><img src="https://tridentstack.com/cve/badge/CVE-2023-20900.svg" alt="CVE-2023-20900"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2024-11-21.