CVE-2022-26904 Windows User Profile Service Elevation of Privilege Vulnerability.
This may occur if a malicious user is able to successfully log into an account where the UPLEVEL service has been configured and is running.
CVE-2022-1256 A local privilege escalation vulnerability in MA for Windows prior to 5.7.6 allows a low privileged user to gain system privileges.
This resulted in a local low privileged user being able to perform system tasks as the System account. No other users were affected by this
CVE-2022-1257 Insecure storage of sensitive information in MA for Linux, macOS, and Windows prior to 5.7.6 allows a local user to gain access to sensitive information.
This issue has been fixed in 5.7.6 and later.
Insecure configurations of LDAP server before 5.7.6 allows remote attackers to view
CVE-2022-22957 VMware Workspace ONE has two remote code execution vulnerabilities CVE-2022-22957 & CVE-2022-22958.
All versions of VMware Workspace ONE (5.0.0-5.0.16) are affected by these issues. All versions of VMware Identity Manager (6.0.0
CVE-2022-22955 There are 2 OAuth2 ACS vulnerabilities in VMware Workspace ONE Access: 2022-22955 & 2022-22956.
To protect yourself from such attacks, it’s recommended to secure your workspace with strict permissions. Also, it’s recommended to update to the latest
Episode
00:00:00
00:00:00