← back
CVE-2022-31660

CVE-2022-31660

EPSS 1.1%
Vexday Risk Score
18Low
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 1.1%KEV nãoPoC Nuclei Metasploit simPatch
Lifecycle
02 Aug 2022Metasploit module available
05 Aug 2022Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
VMware Workspace ONE Access, Identity Manager and vRealize Automation contains a privilege escalation vulnerability. A malicious actor with local access can escalate privileges to 'root'.