CVE-2023-34048

VMware vCenter Server Out-of-Bounds Write Vulnerability

CVSS 9.8 CRITICALEPSS 99.4%● KEVCWE-787

In short

VMware vCenter Server has a flaw in how it handles network communications that allows attackers to write data beyond intended memory boundaries, potentially giving them complete control of the system. This is critical because vCenter Server manages virtual infrastructure in data centers.

Technical detail

An out-of-bounds write vulnerability exists in the DCERPC protocol implementation of vCenter Server (CWE-787). A network-adjacent attacker can craft malicious DCERPC packets to trigger memory corruption, potentially achieving unauthenticated remote code execution with the privileges of the vCenter Server process.

Summary generated and translated by AI from the official description.

vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger an out-of-bounds write potentially leading to remote code execution.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

VMware · VMware Cloud Foundation (VMware vCenter Server)VMware · VMware vCenter Server

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-34048 https://www.vicarius.io/vsociety/posts/understanding-cve-2023-34048-a-zero-day-out-of-bound-write-in-vcenter-server https://www.vmware.com/security/advisories/VMSA-2023-0023.html