VMware Tools for Windows (11.x.y prior to 11.2.6), VMware Remote Console for Windows (12.x prior to 12.0.1) , VMware App Volumes (2.x prior to 2.18.10 and 4 prior to 2103) contain a local privilege escalation vulnerability. An attacker with normal access to a virtual machine may exploit this issue by placing a malicious file renamed as `openssl.cnf' in an unrestricted directory which would allow code to be executed with elevated privileges.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: vmware

Published: 2021-06-23T11:16:41

Updated: 2024-08-03T18:30:23.548Z

Reserved: 2021-01-04T00:00:00

Link: CVE-2021-21999

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-06-23T12:15:07.897

Modified: 2024-11-21T05:49:24.887

Link: CVE-2021-21999

cve-icon Redhat

No data.