H1-1537543

Exploit Intelligence

• 【懒人神器】一款图形化、批量采集url、批量对采集的url进行各种nday检测的工具。可用于src挖掘、cnvd挖掘、0day利用、打造自己的武器库等场景。可以批量利用Actively Exploited Atlassian Confluence 0Day CVE-2022-26134和DedeCMS v5.7.87 SQL注入 CVE-2022-23337。 (github-poc-repo)
• VMware Workspace ONE Access and Identity Manager RCE via SSTI - Test script for shodan, file or manual. (github-poc-repo)
• 一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webshell，命令执行或者上传公钥使用SSH免密连接 (github-poc-repo)
• corelight/cve-2022-22954 (github-poc-repo)
• amit-pathak009/CVE-2022-22954-PoC (github-poc)
• amit-pathak009/CVE-2022-22954 (github-poc)
• Practising technical writing with researching CVE-2022-22954 VMware Workspace ONE Access RCE vulnerability. (github-poc)
• VMware Workspace ONE Access and Identity Manager RCE via SSTI. CVE-2022-22954 - PoC SSTI * exploit+payload+shodan (ну набором) (github-poc)
• orwagodfather/CVE-2022-22954 (github-poc)
• Python script to exploit CVE-2022-22954 and then exploit CVE-2022-22960 (github-poc)

…and 32 more exploits

Timeline

• Apr 12, 2022 PoC Published
• Apr 29, 2022 CVE Published
• Apr 29, 2022 PoC Published

References

• ██████████ vulnerable to CVE-2022-22954 advisory