{"vulnerability": "CVE-2023-20900", "sightings": [{"uuid": "950c46ae-67bd-4c32-a20f-e48e62bb32e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-20900", "type": "seen", "source": "https://t.me/cibsecurity/69536", "content": "\u203c CVE-2023-20900 \u203c\n\nVMware Tools contains a SAML token signature bypass vulnerability.\u00c2\u00a0A malicious actor with man-in-the-middle (MITM) network positioning between vCenter server and the virtual machine may be able to bypass SAML token signature verification, to perform VMware Tools Guest Operations.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-31T14:12:53.000000Z"}]}