.. / CVE-2021-22054

Exploit for VMWare Workspace ONE UEM - Server-Side Request Forgery (CVE-2021-22054)

Description:

VMware Workspace ONE UEM console 20.0.8 prior to 20.0.8.37, 20.11.0 prior to 20.11.0.40, 21.2.0 prior to 21.2.0.27, and 21.5.0 prior to 21.5.0.37 contain a server-side request forgery vulnerability. This issue may allow a malicious actor with network access to UEM to send their requests without authentication and to gain access to sensitive information.

Nuclei Template

View the template here CVE-2021-22054.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2021/CVE-2021-22054.yaml

References:

https://blog.assetnote.io/2022/04/27/vmware-workspace-one-uem-ssrf/
https://www.vmware.com/security/advisories/VMSA-2021-0029.html
https://github.com/fardeen-ahmed/Bug-bounty-Writeups
https://nvd.nist.gov/vuln/detail/CVE-2021-22054
https://github.com/nomi-sec/PoC-in-GitHub

.. / CVE-2021-22054 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for VMWare Workspace ONE UEM - Server-Side Request Forgery (CVE-2021-22054)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2021-22054