漏洞描述
Vmware Vmware Workspace One是美国Vmware公司的一个用于支持跨设备应用于快速交付、管理应用程序的平台。该平台包含VMware Horizon 和 VMware Horizon Cloud,将访问控制、应用程序管理和多平台端点管理集成到一个平台中,可高效管理多个设备。
VMWare Workspace One UEM BlobHandler.ashx Url SSRF漏洞
PoC代码
暂无相关漏洞推荐
- Omnissa Workspace ONE UEM /DevicesGateway/apps/system-app-metadata 目录遍历漏洞(CVE-2025-25231)
- Omnissa Workspace ONE UEM CVE-2025-25231 路径遍历
- POC CVE-2021-22054: VMWare Workspace ONE UEM - Server-Side Request Forgery
- POC CVE-2022-22954: VMware Workspace ONE Access - Server-Side Template Injection
- POC CVE-2022-22972: VMware Workspace ONE Access/Identity Manager/vRealize Automation - Authentication Bypass
- POC CVE-2025-25231: Omnissa Workspace ONE UEM - Path Traversal
- POC CVE-2023-34039: VMWare Aria Operations - Remote Code Execution
- POC CVE-2021-21975: vRealize Operations Manager API SSRF (VMWare Operations)
- POC CVE-2022-22954: VMware Workspace ONE Access SSTI
- POC CVE-2022-22956: VMware Workspace ONE Access - Authentication Bypass
- POC vmware-cloud-xss: VMWare Cloud - Cross Site Scripting
- (CVE-2025-4879) Citrix Workspace App for Windows本地权限提升漏洞
- Citrix Citrix Workspace App For Windows 权限管理不当