module
VMware Workspace ONE Access CVE-2022-22954
| Disclosed |
|---|
| Apr 6, 2022 |
Disclosed
Apr 6, 2022
Description
This module exploits CVE-2022-22954, an unauthenticated server-side
template injection (SSTI) in VMware Workspace ONE Access, to execute
shell commands as the "horizon" user.
template injection (SSTI) in VMware Workspace ONE Access, to execute
shell commands as the "horizon" user.
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.