CVE-2022-22955 There are 2 OAuth2 ACS vulnerabilities in VMware Workspace ONE Access: 2022-22955 & 2022-22956.

CVE-2022-22955 There are 2 OAuth2 ACS vulnerabilities in VMware Workspace ONE Access: 2022-22955 & 2022-22956.

To protect yourself from such attacks, it’s recommended to secure your workspace with strict permissions. Also, it’s recommended to update to the latest version of Workspace ONE Access. In addition to the above, there are two other issues that you should know about. First, if you are using Revoke tokens, it’s recommended to change them regularly. Second, be careful while updating through the management web interface.

Revoke Tokens

& Update from Web Interface
Revoke Tokens
If you are using Revoke tokens, it’s recommended to change them regularly. You can revoke them by going to the Revoke tokens tab under Security and selecting your token.
Update from Web Interface
Be careful while updating through the management web interface. If you update through the web interface and a successful login is made, it’s possible that another user with administrative permissions could gain access to your account. In addition, if you are using the Windows client, be sure to update your antivirus software before updating the software and deleting any old data.

Revoke tokens on access request

If you are using the RevokeTokens() API, it’s recommended to change your tokens regularly. This is because every time you revoke a token, if someone else has access to the revoked token they can use that token to access your workspace. To prevent this from happening, it’s suggested that you change the revoked tokens regularly so that someone cannot use it.

References

Subscribe to CVE.news
Don’t miss out on the latest issues. Sign up now to get access to the library of members-only issues.
jamie@example.com
Subscribe