CVE-2022-22956
------------ On April 6, 2022 VMware released VMSA-2022-0011, a critical advisory addressing security vulnerabilities found and resolved in VMware’s Workspace ONE Access, VMware Identity Manager (vIDM), vRealize Lifecycle Manager, vRealize Automation, and VMware Cloud Foundation products. VMware Identity Manager is also an optional external component that can provide authentication and authorization for other products, such as NSX, vRealize Operations, vRealize Log Insight, and vRealize Network Insight. The VMSA will always be the source of truth for what products & versions are affected, the workarounds, and appropriate patches. This document is a corollary to that advisory and contains resources and numerous questions & answers that have been asked regarding this issue in an effort to communicate new information, reduce the need for support calls, and help keep organizations secure.
EPSS 84.92% · 99.4th percentile
Risk Scores
Exploit Intelligence
- (crowdsec)
- (crowdsec)
- (crowdsec)
- (crowdsec)
- (crowdsec)
- (crowdsec)
- (crowdsec)
- (crowdsec)
- (crowdsec)
- (crowdsec)
…and 82 more exploits
Timeline
- Feb 21, 2022 CrowdSec Sighting
- Mar 19, 2022 CrowdSec Sighting
- Apr 7, 2022 CVE Published
- Apr 7, 2022 PoC Published
- Apr 14, 2022 EPSS Score
- May 31, 2022 CrowdSec Sighting
- Jul 24, 2022 EPSS Score
- Oct 20, 2022 CrowdSec Sighting
- Nov 2, 2022 EPSS Score
- Dec 11, 2022 CrowdSec Sighting
- Dec 24, 2022 CrowdSec Sighting
- Feb 10, 2023 EPSS Score