VMware Tools updates address Local Privilege Escalation and SAML Token Signature Bypass vulnerabilities (CVE-2023-34057, CVE-2023-34058)


VMware has recently reported several vulnerabilities in VMware Tools.


"Local privilege escalation vulnerability in VMware Tools (macOS) (CVE-2023-34057)"

"SAML Token Signature Bypass vulnerability in VMware Tools (CVE-2023-34058)"


The vulnerabilities are described in this article: https://www.vmware.com/security/advisories/VMSA-2023-0024.html


The severity was confirmed as Important. 


Find in the following step by step guide how to apply the VMware Tools upgrade patch to virtual machines in order to mitigate the vulnerabilities. 

Resolution: Update VMware tools to a fixed version


Choose the deploy method base os your network status.
If your server is expose to the internet, you can follow the online mode.

On the contrary if the server is isolated follow the offline mode deploy instructions 


Deploy ONLINE mode

Step 1: Access ESXCLi through SSH

Step 2: Download and deploy the upgrade

  • Change directory to your datastore deployment folder

cd /vmfs/volumes/datastore1/deployment
  • Modify firewall rules to be able to download the upgrade bundle
esxcli network firewall ruleset set -e true -r httpClient
  • Download VMware-Tools-12.2.5
wget -O esx-vmtools-update.zip https://storage.googleapis.com/syneto_public_files/downloads/VMWare/VMware-Tools-12.3.5-core-offline-depot-ESXi-all-22544099.zip --no-check-certificate
  • Deploy the update
esxcli software vib install -f -d /vmfs/volumes/datastore1/deployment/esx-vmtools-update.zip

Output should be similar to:
Installation Result
   Message: Operation finished successfully.
   VIBs Installed: VMware_locker_tools-light_12.3.5.22544099-22545121
   VIBs Removed: VMware_locker_tools-light_12.2.0.21223074-21495797
   VIBs Skipped:
   Reboot Required: false
   DPU Results:



Deploy OFFLINE mode


Before starting the process, download locally :
https://storage.googleapis.com/syneto_public_files/downloads/VMWare/VMware-Tools-12.2.5-core-offline-depot-ESXi-all-21855600.zip


Step 1: Connect to ESXI GUI

Step 2: Open Datastore Browser

  • Go to Storage panel and from Datastores tab open Datastore Browser option

Step 3: Upload the VMware Tools file

  •  Navigate in datastore1 directory and select deployment folder 
  • Upload the VMware Tools file in deployment

Step 4: Access ESXCLi through SSH

Step 5: Deploy the upgrade

  • Change directory to your datastore deployment folder

cd /vmfs/volumes/datastore1/deployment
  • Modify firewall rules to be able to download the upgrade bundle
esxcli network firewall ruleset set -e true -r httpClient


  • Deploy the update
esxcli software vib install -f -d /vmfs/volumes/datastore1/deployment/VMware-Tools-12.3.5-core-offline-depot-ESXi-all-22544099.zip

Output should be similar to:
Installation Result
   Message: Operation finished successfully.
   VIBs Installed: VMware_locker_tools-light_12.3.5.22544099-22545121
   VIBs Removed: VMware_locker_tools-light_12.2.0.21223074-21495797
   VIBs Skipped:
   Reboot Required: false
   DPU Results:



VMware resources:

Vulnerability report