cvelistv5 - cve-2022-22956

CVE-2022-22956 (GCVE-0-2022-22956)

Vulnerability from cvelistv5

Published

2022-04-13 00:00

Modified

2025-02-13 16:28

Severity ?

CWE

Authentication bypass

Summary

VMware Workspace ONE Access has two authentication bypass vulnerabilities (CVE-2022-22955 & CVE-2022-22956) in the OAuth2 ACS framework. A malicious actor may bypass the authentication mechanism and execute any operation due to exposed endpoints in the authentication framework.

References

URL

Tags

	https://www.vmware.com/security/advisories/VMSA-2022-0011.html
	http://packetstormsecurity.com/files/171918/Mware-Workspace-ONE-Remote-Code-Execution.html
	http://packetstormsecurity.com/files/171918/VMware-Workspace-ONE-Remote-Code-Execution.html

Impacted products

	Vendor	Product	Version
	n/a	VMware Workspace ONE Access	Version: Access 21.08.0.1, 21.08.0.0, 20.10.0.1, 20.10.0.0.

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T03:28:42.857Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.vmware.com/security/advisories/VMSA-2022-0011.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/171918/Mware-Workspace-ONE-Remote-Code-Execution.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/171918/VMware-Workspace-ONE-Remote-Code-Execution.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "VMware Workspace ONE Access",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Access 21.08.0.1, 21.08.0.0, 20.10.0.1, 20.10.0.0."
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "VMware Workspace ONE Access has two authentication bypass vulnerabilities (CVE-2022-22955 \u0026 CVE-2022-22956) in the OAuth2 ACS framework. A malicious actor may bypass the authentication mechanism and execute any operation due to exposed endpoints in the authentication framework."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Authentication bypass",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-04-18T19:06:17.459Z",
        "orgId": "dcf2e128-44bd-42ed-91e8-88f912c1401d",
        "shortName": "vmware"
      },
      "references": [
        {
          "url": "https://www.vmware.com/security/advisories/VMSA-2022-0011.html"
        },
        {
          "url": "http://packetstormsecurity.com/files/171918/Mware-Workspace-ONE-Remote-Code-Execution.html"
        },
        {
          "url": "http://packetstormsecurity.com/files/171918/VMware-Workspace-ONE-Remote-Code-Execution.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "dcf2e128-44bd-42ed-91e8-88f912c1401d",
    "assignerShortName": "vmware",
    "cveId": "CVE-2022-22956",
    "datePublished": "2022-04-13T00:00:00.000Z",
    "dateReserved": "2022-01-10T00:00:00.000Z",
    "dateUpdated": "2025-02-13T16:28:57.648Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CERTFR-2022-AVI-318

Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans les produits VMware. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un contournement de la politique de sécurité et une élévation de privilèges.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
VMware	N/A	Identity Manager versions 3.3.3 à 3.3.6 sans le dernier correctif de sécurité (KB88099)
VMware	N/A	Workspace ONE Access Appliance version 21.08.0.x sans le dernier correctif de sécurité (KB88099)
VMware	N/A	vRealize Suite Lifecycle Manager versions 8.x sans le dernier correctif de sécurité (KB88099)
VMware	N/A	Client Horizon pour Linux versions antérieures à 2203
VMware	N/A	vRealize Automation version 7.6 sans le dernier correctif de sécurité (KB88099)
VMware	N/A	Workspace ONE Access Appliance version 20.10.0.x sans le dernier correctif de sécurité (KB88099)
VMware	Cloud Foundation	Cloud Foundation versions 3.x sans le dernier correctif de sécurité (KB88099)
VMware	Cloud Foundation	Cloud Foundation versions 4.x sans le dernier correctif de sécurité (KB88099)

References

Title

Publication Time

Tags

Bulletin de sécurité VMware MSA-2022-0012 du 06 avril 2022	None	vendor-advisory
Bulletin de sécurité VMware MSA-2022-0011 du 06 avril 2022	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Identity Manager versions 3.3.3 \u00e0 3.3.6 sans le dernier correctif de s\u00e9curit\u00e9 (KB88099)",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "Workspace ONE Access Appliance version 21.08.0.x sans le dernier correctif de s\u00e9curit\u00e9 (KB88099)",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "vRealize Suite Lifecycle Manager versions 8.x sans le dernier correctif de s\u00e9curit\u00e9 (KB88099)",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "Client Horizon pour Linux versions ant\u00e9rieures \u00e0 2203",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "vRealize Automation version 7.6 sans le dernier correctif de s\u00e9curit\u00e9 (KB88099)",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "Workspace ONE Access Appliance version 20.10.0.x sans le dernier correctif de s\u00e9curit\u00e9 (KB88099)",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "Cloud Foundation versions 3.x sans le dernier correctif de s\u00e9curit\u00e9 (KB88099)",
      "product": {
        "name": "Cloud Foundation",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "Cloud Foundation versions 4.x sans le dernier correctif de s\u00e9curit\u00e9 (KB88099)",
      "product": {
        "name": "Cloud Foundation",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2022-22954",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-22954"
    },
    {
      "name": "CVE-2022-22964",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-22964"
    },
    {
      "name": "CVE-2022-22962",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-22962"
    },
    {
      "name": "CVE-2022-22955",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-22955"
    },
    {
      "name": "CVE-2022-22961",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-22961"
    },
    {
      "name": "CVE-2022-22959",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-22959"
    },
    {
      "name": "CVE-2022-22957",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-22957"
    },
    {
      "name": "CVE-2022-22956",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-22956"
    },
    {
      "name": "CVE-2022-22958",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-22958"
    },
    {
      "name": "CVE-2022-22960",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-22960"
    }
  ],
  "initial_release_date": "2022-04-07T00:00:00",
  "last_revision_date": "2022-04-07T00:00:00",
  "links": [],
  "reference": "CERTFR-2022-AVI-318",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2022-04-07T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nVMware. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nune ex\u00e9cution de code arbitraire \u00e0 distance, un contournement de la\npolitique de s\u00e9curit\u00e9 et une \u00e9l\u00e9vation de privil\u00e8ges.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits VMware",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 VMware MSA-2022-0012 du 06 avril 2022",
      "url": "https://www.vmware.com/security/advisories/VMSA-2022-0012.html"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 VMware MSA-2022-0011 du 06 avril 2022",
      "url": "https://www.vmware.com/security/advisories/VMSA-2022-0011.html"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2022-22956 (GCVE-0-2022-22956)

Vulnerability from cvelistv5

CERTFR-2022-AVI-318

Vulnerability from certfr_avis

Solution

Tags

Sightings

Nomenclature