CISA Warns of Ongoing VMware VMscare

Share This Post

Back on April 6th, 2022, VMware released software updates and disclosed two vulnerabilities. The updates were intended to address (CVE-2022-22954 and CVE-2022-22960) which afflict VMware Workspace ONE Access, VMware Identity Manager (vIDM), vRealize Lifecycle Manager, vRealize Automation, and VMware Cloud Foundation products. Within 48 hours, those updates had been reverse engineered by sophisticated threat actors and those vulnerabilities were being actively exploited to enable privilege escalation and trigger a server-side template injection that can result in remote code execution.

On May 18th, 2022, VMware released software updates and disclosed two more fresh vulnerabilities for the same list of products. (CVE-2022-22972 and CVE-2022-22973) On the same day, the Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency directive along with an alert that warns of threat actors chaining these four vulnerabilities to gain full system control.

In the week since, these most recent updates have again been reverse engineered, allowing attackers to obtain administrative access without needing to authenticate, and/or escalate privileges all the way to ‘root.’

For all the product versions affected and remediation procedures, visit: https://kb.vmware.com/s/article/88438



Reach out to our incident response team for help

More To Explore

Information Security News – 6/2/2025

Why Layoffs Increase Cybersecurity Risks Article Link: https://www.helpnetsecurity.com/2025/05/26/layoffs-cybersecurity-risks/ The CISO’s Dilemma: Balancing Access, Security, and Operational Continuity Article Link: https://www.forbes.com/councils/forbestechcouncil/2025/05/27/the-cisos-dilemma-balancing-access-security-and-operational-continuity/ Massive Data Breach Exposes 184

Information Security News – 5/19/2025

Attackers Lace Fake Generative AI Tools With ‘Noodlophile’ Malware Article Link: https://www.darkreading.com/endpoint-security/attackers-fake-generative-ai-tools-malware CISA Reverses Decision on Cybersecurity Advisory Changes Article Link: https://www.infosecurity-magazine.com/news/cisa-reverses-decision-advisory/ FBI Warns That

Do You Want to Shore Up Your Defenses?

We're opening our first round of threat hunting engagements to 100 organizations. Sign up or join the wait list here.