CVE-2022-22954 | Cybersecurity Alerts | Nexus IT Services, LLC

← Back to Cybersecurity Alerts

CVE-2022-22954

VMware | Workspace ONE Access and Identity ManagerAdded 2022-04-14Remediation Deadline 2022-05-05Active Ransomware Campaign

VMware Workspace ONE Access and Identity Manager Server-Side Template Injection Vulnerability

VMware Workspace ONE Access and Identity Manager allow for remote code execution due to server-side template injection.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-94

References

https://nvd.nist.gov/vuln/detail/CVE-2022-22954