admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-05-06 02:31:35 +00:00
Code Issues Packages Projects Releases Wiki Activity
GobyVuls/VMware/CVE-2022-22954
History
gaopeng2 6759eab2ed add CVE-2022-22954
2022-04-11 16:58:13 +08:00
..
CVE-2022-22954.gif
add CVE-2022-22954
2022-04-11 16:58:13 +08:00
README.md
add CVE-2022-22954
2022-04-11 16:58:13 +08:00

README.md

VMware Workspace ONE Access & Identity Manager Remote Code Execution (CVE-2022-22954)

<span style="color: rgb(0, 0, 0); font-size: 16px;">VMware Workspace ONE is an intelligence-driven digital workspace platform that lets you deliver and manage applications anywhere, anytime, on any device, in a simple and secure way. <span style="color: rgb(0, 0, 0); font-size: 16px;">VMware workspace one access and Identity Manager have a remote command execution vulnerability caused by server template injection, which can be exploited by unauthenticated attackers for remote arbitrary code execution.

FOFA query rule: app="vmware-Workspace-ONE-Access" || app="vmware-Identity-Manager"

Demo

CVE-2022-22954