VMware Workspace ONE Access Template Injection / Command Execution

Discussion in 'News Aggregator' started by Packet Storm, 4 May 2022.

  1. Packet Storm

    Packet Storm Guest

    This Metasploit module exploits CVE-2022-22954, an unauthenticated server-side template injection (SSTI) vulnerability in VMware Workspace ONE Access, to execute shell commands as the horizon user.

    Continue reading...
     

Share This Page

Loading...