CVE-2022-22954#

Statement on CVE-2022-22954 VMware Vulnerabilities #

July 15, 2022

Information #

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a privilege escalation vulnerability due to improper permissions in support scripts. A malicious actor with local access can escalate privileges to ‘root’.

Severity #

Low

Response #

Melissa Data Corporation (“Melissa”) was not impacted by the VMware vulnerabilities as Melissa does not utilize any of the impacted VMware products.

Melissa will continue to follow all guidance provided for this vulnerability as necessary to prevent any future risks.

CVE-2022-22954

Contents

CVE-2022-22954#

Statement on CVE-2022-22954 VMware Vulnerabilities#

Information#

Severity#

Response#

Statement on CVE-2022-22954 VMware Vulnerabilities #

Information #

Severity #

Response #