Home / exploitsPDF  

VMware Workspace ONE Access Privilege Escalation

Posted on 19 April 2023

This Metasploit module exploits CVE-2022-22960 which allows the user to overwrite the permissions of the certproxyService.sh script so that it can be modified by the horizon user. This allows a local attacker with the uid 1001 to escalate their privileges to root access.

 

TOP