CVE-2023-34064 Privilege Escalation Vulnerability

2023-12-1219:50:51

vmware

www.cve.org

workspace one

launcher

privilege escalation

vulnerability

edge panel

sensitive information

5.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.6%

JSON

Workspace ONE Launcher contains a Privilege Escalation Vulnerability. A malicious actor with physical access to Workspace ONE Launcher could utilize the Edge Panel feature to bypass setup to gain access to sensitive information.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "VMware Workspace ONE Launcher",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "VMware Workspace ONE Launcher 22.x, 23.x"
      }
    ]
  }
]

References

www.vmware.com/security/advisories/VMSA-2023-0027.html