CVE-2022-22954

This repository contains a Go-based exploit tool for multiple VMware vCenter vulnerabilities, including CVE-2022-22954 (RCE), CVE-2021-21972, CVE-2021-21985, CVE-2021-22005, and Log4j (CVE-2021-44228). It supports command execution, file upload, reverse shells, and SSH key deployment.

This PoC demonstrates a Server-Side Template Injection (SSTI) vulnerability in VMware Workspace ONE Access, allowing arbitrary command execution via a crafted GET request. The payload executes `cat /etc/passwd` as proof of concept.

This repository contains a Python-based exploit for CVE-2022-22954, a FreeMarker template injection vulnerability in VMware Workspace ONE Access. The exploit supports command execution, file writing, and batch scanning across multiple endpoints.

This PoC exploits CVE-2022-22954, a Server-Side Template Injection (SSTI) vulnerability in VMware Workspace ONE Access and Identity Manager. It allows remote command execution by injecting a Freemarker template payload via the `deviceUdid` parameter.

This repository contains a functional proof-of-concept exploit for CVE-2022-22954, a template injection vulnerability in VMware Workspace ONE Access. The exploit leverages Freemarker template utility to execute arbitrary commands via a crafted URI, with support for both scanning and RCE modes.

This repository contains a writeup and images describing CVE-2022-22954, a server-side template injection vulnerability in VMware Workspace ONE Access and Identity Manager. No exploit code is provided, only references and social media links.

This PoC exploits a Server-Side Template Injection (SSTI) vulnerability in VMware Workspace ONE Access via Freemarker template manipulation. It constructs a malicious payload to execute arbitrary commands (e.g., 'cat /etc/passwd') by abusing the 'freemarker.template.utility.Execute' class.

This repository contains a Python-based PoC for CVE-2022-22954, a Server-Side Template Injection (SSTI) vulnerability in VMware Workspace ONE Access. The exploit allows remote command execution by injecting malicious payloads into the deviceUdid parameter.

This repository contains a Python-based PoC for CVE-2022-22954, a Server-Side Template Injection (SSTI) vulnerability in VMware Workspace ONE Access. The exploit allows remote command execution by injecting payloads into the deviceUdid parameter.

This PoC exploits CVE-2022-22954, a Server-Side Template Injection (SSTI) vulnerability in VMware Workspace ONE Access. It allows remote command execution by injecting Freemarker template expressions via the `deviceUdid` parameter.

This is a functional exploit PoC for CVE-2022-22954, targeting VMware Workspace ONE Access. It leverages a FreeMarker template injection vulnerability to achieve remote code execution (RCE) and file writing capabilities.

This repository contains a Python-based PoC for CVE-2022-22954, a Server-Side Template Injection (SSTI) vulnerability in VMware Workspace ONE Access and Identity Manager. The exploit allows remote command execution by sending a crafted payload to the vulnerable endpoint.

This repository contains a Python-based proof-of-concept (PoC) for CVE-2022-22954, a vulnerability in VMware. The script checks for the presence of the vulnerability by sending a crafted HTTP request to the target URL and analyzing the response.

This repository contains a Python script designed to scan multiple URLs for the presence of CVE-2022-22954, a remote code execution vulnerability in VMware Workspace ONE Access. The script uses a specific payload to trigger the vulnerability and checks the response to determine if the target is vulnerable.

This repository provides a detection package for CVE-2022-22954, a VMware vulnerability, by generating notices for exploit attempts and successes. It includes scripts for testing and coverage analysis but does not contain actual exploit code.

This is a functional proof-of-concept exploit for CVE-2022-22954, a command injection vulnerability in VMware Workspace ONE Access. It leverages a Freemarker template injection to execute arbitrary commands via a crafted GET request to the `/catalog-portal/ui/oauth/verify` endpoint.

This repository contains a scanner for CVE-2022-22954, a vulnerability in VMware Workspace ONE Access and related products. The scanner checks for the presence of the vulnerability by sending a crafted request to the target URL and analyzing the response.

This repository contains a Python script that checks for the presence of CVE-2022-22954, a server-side template injection vulnerability in VMware Workspace ONE Access and Identity Manager. The script sends a crafted request to the target URL and checks the response for indicators of vulnerability.

This repository contains a README file describing research on CVE-2022-22954, a VMware Workspace ONE Access RCE vulnerability. No exploit code or technical details are provided.

This repository contains a functional PoC for CVE-2022-22954, a Server-Side Template Injection (SSTI) vulnerability in VMware Workspace ONE Access and Identity Manager. The exploit allows remote command execution by injecting malicious payloads into the deviceUdid parameter.

This repository contains a Python-based PoC for CVE-2022-22954, a Server-Side Template Injection (SSTI) vulnerability in VMware Workspace ONE Access and Identity Manager. The exploit allows remote command execution by injecting malicious payloads into the deviceUdid parameter.

This PoC exploits CVE-2022-22954, a Server-Side Template Injection (SSTI) vulnerability in VMware Workspace ONE Access and Identity Manager, allowing remote command execution. The script supports multiple modes (Shodan, file-based, manual) to identify and exploit vulnerable targets.

This repository provides a detailed analysis of CVE-2022-22954, a Server-Side Template Injection (SSTI) vulnerability in VMware Workspace ONE Access and related products. It includes setup instructions, path analysis, and exploitation steps using Freemarker template injection.

This repository contains a Python-based exploit for CVE-2022-22954, a remote code execution vulnerability in VMware Workspace ONE Access. The exploit leverages a Freemarker template injection to execute arbitrary commands on the target system.

This PoC exploits CVE-2022-22954, a Freemarker template injection vulnerability in VMware Workspace ONE Access, by sending crafted HTTP requests to trigger remote code execution via the `freemarker.template.utility.Execute` class.

This repository contains a Python script and a README demonstrating a Server-Side Template Injection (SSTI) vulnerability in VMware Workspace ONE Access (CVE-2022-22954). The exploit leverages Freemarker template injection to execute arbitrary commands (e.g., `cat /etc/passwd`) via a crafted GET request.

This repository contains a detailed technical writeup for CVE-2022-22954, which involves an unauthenticated remote code execution vulnerability in Cisco Nexus Dashboard Fabric Controller (formerly DCNM). The vulnerability is due to unsafe Flex AMF Java object deserialization and insecure sudo permissions, allowing an attacker to achieve root access.

This Metasploit module exploits CVE-2022-22954, an unauthenticated server-side template injection (SSTI) in VMware Workspace ONE Access, to execute shell commands as the 'horizon' user. It leverages Freemarker template utility to achieve remote code execution.