mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-11 04:25:00 +02:00
0xMarcio
1.3 KiB
1.3 KiB
CVE-2022-22960
Description
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a privilege escalation vulnerability due to improper permissions in support scripts. A malicious actor with local access can escalate privileges to 'root'.
POC
Reference
- http://packetstormsecurity.com/files/171918/Mware-Workspace-ONE-Remote-Code-Execution.html
- http://packetstormsecurity.com/files/171918/VMware-Workspace-ONE-Remote-Code-Execution.html
- http://packetstormsecurity.com/files/171935/VMware-Workspace-ONE-Access-Privilege-Escalation.html
Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Chocapikk/CVE-2022-22954
- https://github.com/Ostorlab/KEV
- https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors
- https://github.com/kaanymz/2022-04-06-critical-vmware-fix
- https://github.com/secfb/CVE-2022-22954
- https://github.com/sourceincite/hekate