S4E

CVE-2022-22954 Scanner

Detects 'Server Side Template Injection (SSTI)' vulnerability in VMware Workspace ONE Access and Identity Manager affects v. Access 21.08.0.1, 21.08.0.0, 20.10.0.1, 20.10.0.0. Identity Manager 3.3.6, 3.3.5, 3.3.4, 3.3.3..

SCAN NOW

Short Info


Level

Critical

Single Scan

Single Scan

Can be used by

Asset Owner

Estimated Time

10 second

Time Interval

4 week

Scan only one

Url

Toolbox

-

VMware Workspace ONE Access and Identity Manager are two separate products that, when used together, provide organizations with an effective and streamlined solution for managing access to their digital assets, including web applications, cloud resources, and mobile devices. VMware Workspace ONE Access provides single sign-on (SSO) capabilities, enabling users to access their applications with a single set of credentials, while VMware Workspace ONE Identity Manager acts as a centralized directory service, providing IT administrators with the necessary tools to manage user identities and access rights.

Recently, a critical vulnerability identified as CVE-2022-22954 has been discovered in these products. The vulnerability affects both VMware Workspace ONE Access and Identity Manager, and can allow a remote attacker to execute arbitrary code on affected systems. Specifically, the vulnerability lies in the server-side template injection (SSTI) mechanism used by the products. This vulnerability can be triggered by a malicious actor with network access, allowing them to inject arbitrary code into the template and execute it remotely.

If the vulnerability is successfully exploited, it can lead to severe consequences for an organization. Malicious actors can use the vulnerability to access sensitive data, steal credentials, and take control over accounts with elevated privileges. They can use the compromised accounts to install additional malware and ransomware on the affected systems, leading to data loss, theft, and system downtime. In short, the vulnerability can be used as a launchpad for advanced persistent threats, which can be difficult to detect and mitigate.

Thanks to the pro features of the s4e.io platform, readers of this article can take advantage of a comprehensive security assessment tool that can help them quickly identify vulnerabilities in their digital assets. The service provides a detailed report containing actionable insights into security gaps and recommendations for how to address them. By using the s4e.io platform, organizations can stay one step ahead of cyber threats and protect their assets effectively.

 

REFERENCES

Get started to protecting your Free Full Security Scan