CVE-2021-21999

moderate-risk

Published 2021-06-23

VMware Tools for Windows (11.x.y prior to 11.2.6), VMware Remote Console for Windows (12.x prior to 12.0.1) , VMware App Volumes (2.x prior to 2.18.10 and 4 prior to 2103) contain a local privilege escalation vulnerability. An attacker with normal access to a virtual machine may exploit this issue by placing a malicious file renamed as `openssl.cnf' in an unrestricted directory which would allow code to be executed with elevated privileges.

Do I need to act?

0.06% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.8/10 High

LOCAL / LOW complexity

Affected Products (3)

App Volumes

Remote Console

Tools

Affected Vendors

Vmware

References (4)

Patch https://www.vmware.com/security/advisories/VMSA-2021-0013.html

Third Party Advisory https://www.zerodayinitiative.com/advisories/ZDI-21-754/

Patch https://www.vmware.com/security/advisories/VMSA-2021-0013.html

Third Party Advisory https://www.zerodayinitiative.com/advisories/ZDI-21-754/

/ 100

moderate-risk

Severity 24/34 · High

Exploitability 0/34 · Minimal

Exposure 9/34 · Low