CVE-2022-22973: 
Workspace ONE Access Connector vulnerability analysis and mitigation

CVE-2022-22973 is a privilege escalation vulnerability affecting VMware Workspace ONE Access and Identity Manager, discovered and disclosed in May 2022. The vulnerability allows a malicious actor with local access to escalate privileges to 'root' on vulnerable systems. The affected products include VMware Workspace ONE Access versions 21.08.0.0/21.08.0.1 and 20.10.0.0/20.10.0.1, as well as VMware Identity Manager versions 3.3.3 through 3.3.6 running on Linux systems (VMware Advisory).

The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (High severity) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. This scoring reflects that the vulnerability requires local access (AV:L), has low attack complexity (AC:L), requires low privileges (PR:L), needs no user interaction (UI:N), and has high impacts on confidentiality, integrity, and availability (NVD).

If successfully exploited, the vulnerability allows an attacker with local access to elevate their privileges to root level, potentially gaining complete control over the affected system. This level of access could enable an attacker to execute arbitrary commands, modify system configurations, access sensitive data, and potentially compromise the entire system (VMware Advisory).

VMware has released patches to address this vulnerability. Organizations are advised to apply the patches listed in the 'Fixed Version' column of the Resolution Matrix in KB88438. No workarounds are available for this vulnerability, making patch application the only remediation option (VMware Advisory).