CVE-2022-22960
VMware Multiple Products Privilege Escalation Vulnerability
CVSS
—
No CVSS
EPSS
37.2%
p98
KEV
YES
Apr 15, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
37.2%EPSS · 30 days37.2%
2026-06-302026-07-16
Product
VMware / Multiple Products
Vulnerability
VMware Multiple Products Privilege Escalation Vulnerability
Added to KEV
Apr 15, 2022
Remediate by
May 6, 2022
Known ransomware use
No
Summary description
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a privilege escalation vulnerability due to improper permissions in support scripts.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2022-22960