漏洞描述
VMware Workspace ONE Access(以前称为VMware IdentityManager)旨在通过多因素身份验证、条件访问和单点登录,让您的员工更快地访问SaaS、Web和本机移动应用程序.该漏洞属于多个 VMware产品中的一个关键身份验证绕过漏洞,能允许攻击者获得管理员权限。
VMware Workspace ONE Access 身份认证绕过漏洞(CVE-2022-22972)
PoC代码
暂无相关漏洞推荐
- POC nexus-repository-anonymous-access: Nexus Repository Manager - Anonymous Access Enabled
- POC CVE-2019-25213: WordPress Advanced Access Manager - Path Traversal
- POC CVE-2023-3277: MStore API <= 4.10.7 - Unauthorized Account Access and Privilege Escalation
- POC CVE-2024-47308: Templately <= 3.1.2 - Broken Access Control
- POC CVE-2025-64525: Astro - Broken Access Control
- POC unauth-akhq-dashboard: AKHQ Dashboard - Unauthenticated Access
- POC unauth-kafka-config-editor: Kafka Config Editor - Unauthenticated Access
- POC unauth-qdrantui: Qdrant UI - Unauthenticated Access
- POC CVE-2022-29081: Zoho ManageEngine - Access Control Bypass
- POC CVE-2025-12480: Triofox - Improper Access Control
- POC CVE-2025-52665: UniFi Access - Broken Access Control
- POC unifi-create-user: UniFi - Unauthenticated Creation Access For Users
- (CVE-2025-41252) VMware NSX未认证的用户名枚举漏洞