The VMware Workspace One Access (formerly VMware Identity Manager) application running on the remote host is affected by a remote code execution vulnerability due to server-side template injection. An unauthenticated, remote attacker can exploit this, via a specially crafted message, to execute arbitrary code on the remote host.
Binary data vmware_workspace_one_access_cve-2022-22954.nbin
Vendor | Product | Version | CPE |
---|---|---|---|
vmware | workspace_one_access | cpe:/a:vmware:workspace_one_access | |
vmware | identity_manager | cpe:/a:vmware:identity_manager |