Lucene search
Hive ProHIVEPRO:4FB5DD5F7C41E3797518D866E88BFA8CHistoryMay 19, 2022 - 2:34 p.m.
Vulnerabilities in VMware when chained together grants Full System Control
2022-05-1914:34:51
Hive Pro
www.hivepro.com
42
0.974 High
EPSS
Percentile
99.9%
Threat Level Vulnerability Report For a detailed advisory, download the pdf file here Summary The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning to organizations about malicious actors using CVE-2022-22954 and CVE-2022-22960. This alert was published following the disclosure of two related vulnerabilities (CVE-2022-22972 and CVE-2022-22973), putting it vulnerable to future exploitation. All these flaws might be exploited separately or in combination to obtain total control.
Related
malwarebytes
malwarebytes
VMWare vulnerabilities are actively being exploited, CISA warns
2022-05-19 12:42:13
2022's most routinely exploited vulnerabilitiesβhistory repeats
2023-08-07 18:30:00
rapid7blog
rapid7blog
cisa
cisa
ics
ics
2022 Top Routinely Exploited Vulnerabilities
2023-08-03 12:00:00
attackerkb
attackerkb
thn
thn
VMware Releases Patches for New Vulnerabilities Affecting Multiple Products
2022-05-19 05:48:00
Iranian Hackers Exploiting VMware RCE Bug to Deploy 'Core Impact' Backdoor
2022-04-26 06:18:00
nessus
nessus
vmware
vmware
hivepro
hivepro
Two actively exploited vulnerabilities affect multiple VMware products
2022-04-18 13:06:29
Newly patched VMware vulnerability exploited by Iranian espionage group, Rocket Kitten
2022-04-26 12:44:24
Weekly Threat Digest: 11 β 17 April 2022
2022-04-21 04:59:07
threatpost
threatpost
April VMware Bugs Abused to Deliver Mirai Malware, Exploit Log4Shell
2022-05-18 13:54:23
Log4Shell Vulnerability Targeted in VMware Servers to Exfiltrate Data
2022-06-28 11:57:06
cve
cve
nvd
nvd
prion
prion
Privilege escalation
2022-05-20 21:15:00
Authentication flaw
2022-05-20 21:15:00
Remote code execution
2022-04-11 20:15:00
cvelist
cvelist
githubexploit
githubexploit
Exploit for CVE-2022-22972
2022-05-28 20:56:09
Exploit for CVE-2022-22972
2022-05-24 20:19:55
Exploit for Code Injection in Vmware Identity Manager
2020-10-09 10:14:50
osv
osv
hackerone
hackerone
U.S. Dept Of Defense: ββββββββββ vulnerable to CVE-2022-22954
2022-04-11 15:17:31
U.S. Dept Of Defense: βββ vulnerable to CVE-2022-22954
2022-04-11 16:41:20
srcincite
srcincite
checkpoint_advisories
checkpoint_advisories
VMware Workspace Remote Code Execution (CVE-2022-22954)
2022-04-27 00:00:00
VMware Authentication Bypass (CVE-2022-22972)
2022-05-29 00:00:00
metasploit
metasploit
VMware Workspace ONE Access CVE-2022-22954
2022-05-02 23:51:46
VMware Workspace ONE Access CVE-2022-22960
2023-04-12 19:36:17
VMware Workspace ONE Access VMSA-2022-0011 exploit chain
2023-04-06 03:10:34
nuclei
nuclei
VMware Workspace ONE Access/Identity Manager/vRealize Automation - Authentication Bypass
2022-05-30 23:02:11
VMware Workspace ONE Access - Server-Side Template Injection
2022-04-11 16:47:00
cisa_kev
cisa_kev
VMware Workspace ONE Access and Identity Manager Server-Side Template Injection Vulnerability
2022-04-14 00:00:00
VMware Multiple Products Privilege Escalation Vulnerability
2022-04-15 00:00:00
zdt
zdt
VMware Workspace ONE Access Template Injection / Command Execution Exploit
2022-05-04 00:00:00
VMware Workspace ONE Access Privilege Escalation Exploit
2023-04-19 00:00:00
VMware Workspace ONE Remote Code Execution Exploit
2023-04-18 00:00:00
packetstorm
packetstorm
VMware Workspace ONE Access Template Injection / Command Execution
2022-05-03 00:00:00
VMware Workspace ONE Access Privilege Escalation
2023-04-19 00:00:00
Mware Workspace ONE Remote Code Execution
2023-04-18 00:00:00
trellix
trellix
The Bug Report β May 2022 Edition
2022-06-01 00:00:00
The Bug Report β May 2022 Edition
2022-06-01 00:00:00
qualysblog
qualysblog
Qualys Tackles 2022βs Top Routinely Exploited Cyber Vulnerabilities
2023-08-24 19:07:05