|CVSS SCORE||6.0, (AV:L/AC:H/Au:S/C:C/I:C/A:C)|
VMWare vCenter Server Appliance
The specific flaw exists within the usage of the Ruby vSphere Console (RVC) provided by the vCenter Server Appliance. Commands can be run in a privileged context allowing an attacker to break-out of a chroot jail. This allows for an attacker to elevate privilege and execute commands as root.
Vendor Contact Timeline:
-- Vendor Provided Mitigations:
Remove all users from the shellaccess group with the following command: usermod -R shellaccess LOGIN
Remove the line "AllowGroups shellaccess wheel" from the /etc/ssh/sshd_config Restart the sshd service with the following command: service sshd restart
This issue only affects vCenter Server Appliance 5.1 and vCenter Server Appliance 5.5. No other products are affected by this issue.