10 August 2022

Exploit code published online for a critical VMware vulnerability


Exploit code published online for a critical VMware vulnerability

Just a week after VMware released security updates for a critical vulnerability affecting multiple VMware products the software provider has issued a warning that a malicious exploit code for the flaw has been made publicly available.

The said vulnerability (CVE-2022-31656) is an authentication bypass issue, which allows a remote non-authenticated attacker with access to the UI bypass authentication process and gain administrative access to the system. The issue impacts the VMware Workspace ONE Access, Identity Manager, and vRealize Automation software products.

“VMware has confirmed malicious code that can exploit CVE-2022-31656 in impacted products is publicly available,” the company wrote in an updated security advisory.

A proof-of-concept code for the vulnerability along with technical analysis has been published by Petrus Viet, a security researcher who discovered the issue.

The US Cybersecurity and Infrastructure Security Agency (CISA) published its own warning last week urging users and administrators to apply the necessary updates.


Back to the list

Latest Posts

Cyber security week in review: September 23, 2022

Cyber security week in review: September 23, 2022

The world in brief: Cryptomarket maker Wintermute robbed of $160M in a hack, old Python bug potentially affects 350,000 open-source projects, and more.
23 September 2022
Unpatched 15-year-old Python vulnerability puts at risk over 350,000 open-source projects

Unpatched 15-year-old Python vulnerability puts at risk over 350,000 open-source projects

The vulnerable Python tarfile module is found extensively in frameworks created by Netflix, AWS, Intel, Facebook, Google and other software.
22 September 2022
Malicious actors continue to abuse Google Tag Manager tool to install e-skimmers

Malicious actors continue to abuse Google Tag Manager tool to install e-skimmers

The researchers said they discovered three variants of malicious scripts hidden within GTM containers that function either as e-skimmers or as downloaders for installing e-skimmers.
21 September 2022