CVE-2022-22954 - VMware Workspace ONE Access and Identity Manager Server-Side Template Injection Vulnerability
Project:VMware
Product:Workspace ONE Access and Identity Manager
Date Added:2022-04-14Due Date:2022-05-05
Vulnerability Name
VMware Workspace ONE Access and Identity Manager Server-Side Template Injection Vulnerability
Description
VMware Workspace ONE Access and Identity Manager allow for remote code execution due to server-side template injection.
Known To Be Used in Ransomware Campaigns?
Known
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2022-22954