This article provides information on how to mitigate the CVE-2023-34058 vulnerability.

→ Applies to: VMware Tools (from 11.0.0 to 12.3.0 included)

Vulnerability description

VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that has been granted Virtual Machine Guest Operations Privileges in a target virtual machine may be able to elevate their privileges if that target virtual machine has been assigned a more privileged Guest Alias.

SOURCES
NIST (https://nvd.nist.gov/vuln/detail/CVE-2023-34058)
VMware (https://www.vmware.com/security/advisories/VMSA-2023-0024.html)

Solution

Update VMware Tools with a not affected version (12.3.5 and above).