all InfoSec news
Metasploit Weekly Wrap-Up
Rapid7 Blog blog.rapid7.com
VMware Workspace ONE Access exploit chain
A new module contributed by jheysel-r7 exploits two vulnerabilities in VMware Workspace ONE Access to attain Remote Code Execution as the horizon
user.
First being CVE-2022-22956, which is an authentication bypass and the second being a JDBC injection in the form of CVE-2022-22957 ultimately
access authentication authentication bypass bypass code code execution cve exploit exploits horizon injection jdbc metasploit metasploit weekly wrapup one access remote code remote code execution vmware vmware workspace vmware workspace one vmware workspace one access vulnerabilities weekly workspace workspace one access wrap-up