Lucene search
K

5 matches found

Rapid7 Blog
Rapid7 Blog
added 2023/04/21 6:2 p.m.108 views

Metasploit Weekly Wrap-Up

VMware Workspace ONE Access exploit chain A new module contributed by jheysel-r7 exploits two vulnerabilities in VMware Workspace ONE Access to attain Remote Code Execution as the horizon user. First being CVE-2022-22956, which is an authentication bypass and the second being a JDBC injection in...

7.5CVSS10.3AI score0.99637EPSS
Exploits36
Packet Storm
Packet Storm
added 2023/04/18 12:0 a.m.405 views

Mware Workspace ONE Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VMware Workspace ONE Access VMSA-2022-0011 exploit chain', 'Description' = %q This module combines two vulnerabilities in order achieve remote co...

9.8CVSS8.4AI score0.50694EPSS
Exploits13
Prion
Prion
added 2022/04/13 6:15 p.m.23 views

Deserialization of untrusted data

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain two remote code execution vulnerabilities CVE-2022-22957 & CVE-2022-22958. A malicious actor with administrative access can trigger deserialization of untrusted data through malicious JDBC URI which may result in remote...

6.5CVSS7.6AI score0.23084EPSS
Exploits5References1Affected Software5
CVE
CVE
added 2022/04/13 12:0 a.m.269 views

CVE-2022-22957

Summary (CVE-2022-22957 / CVE-2022-22958): VMware Workspace ONE Access, Identity Manager and vRealize Automation are affected by remote code execution vulnerabilities. The root cause is deserialization of untrusted data via a malicious JDBC URI in the DBConnectionCheckController (CVE-2022-22957) ...

7.2CVSS8.6AI score0.23084EPSS
In wildExploits5References3Affected Software5
Circl
Circl
added 2022/04/07 4:0 a.m.8 views

CVE-2022-22957

creationtimestamp| type| source ---|---|--- 2022-04-07 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=775 2022-05-01 21:40:40+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/2076 2023-04-18 15:17:44+00:00| seen|...

7.2CVSS8.3AI score0.23084EPSS
Exploits5References6
Rows per page
Query Builder