CVE-2022-22959: 
Workspace ONE Access Connector vulnerability analysis and mitigation

CVE-2022-22959 is a Cross-Site Request Forgery (CSRF) vulnerability affecting VMware Workspace ONE Access, Identity Manager, and vRealize Automation. The vulnerability was disclosed on April 6, 2022, and was discovered by Steven Seeley of Qihoo 360 Vulnerability Research Institute. VMware has evaluated this vulnerability to be in the Important severity range with a CVSS v3.1 base score of 8.8 (VMware Advisory).

The vulnerability allows a malicious actor to trick a user through a cross-site request forgery to unintentionally validate a malicious JDBC URI. The vulnerability has been assigned a CVSS v3.1 base score of 8.8 (Important) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H, indicating network accessibility, low attack complexity, no privileges required, and user interaction required (VMware Advisory, NVD).

The successful exploitation of this vulnerability could allow attackers to perform unauthorized actions through CSRF attacks, potentially leading to the validation of malicious JDBC URIs. This could compromise the security of affected systems by allowing attackers to execute unauthorized operations when users are tricked into performing specific actions (CERT-EU).

VMware has released patches to address this vulnerability and strongly recommends applying these patches as the most reliable solution. The fixes are available through KB88099. While workarounds are documented in KB88098, VMware emphasizes that workarounds do not remove the vulnerability and may introduce additional complexities that patching would not (VMware Advisory).

The vulnerability was part of a larger security advisory from VMware that addressed multiple vulnerabilities in their products. Security researchers and industry professionals emphasized the importance of applying the patches, particularly given the critical nature of some of the vulnerabilities discovered in the same advisory (Hacker News).