CVE-2022-31700: 
NixOS vulnerability analysis and mitigation

VMware Workspace ONE Access and Identity Manager were found to contain an authenticated remote code execution vulnerability, identified as CVE-2022-31700. The vulnerability was discovered and reported by Steven Seeley of Source Incite, with VMware releasing security updates on December 13, 2022. The vulnerability affects VMware Workspace ONE Access versions 21.08.0.1 and 21.08.0.0, VMware Identity Manager version 3.3.6 when running on Linux, and VMware Cloud Foundation 4.x (VMware Advisory).

The vulnerability has been assigned a CVSSv3 base score of 7.2, categorized in the Important severity range. The CVSS vector for this vulnerability is AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H, indicating network accessibility, low attack complexity, and high privileges required for exploitation (FIRST CVSS).

If successfully exploited, this vulnerability allows a malicious actor with administrator and network access to remotely execute code on the underlying operating system. The high CVSS score reflects the potential for complete compromise of system confidentiality, integrity, and availability (VMware Advisory).

VMware has released patches to address this vulnerability. Users are advised to update to VMware Workspace ONE Access version 22.09.1.0 for the latest versions, while users of version 21.08.0.1 and 21.08.0.0 should apply the patches detailed in KB90399. For VMware Cloud Foundation (vIDM), updates are available through KB90384. No workarounds are available, making patch application the only remediation option (VMware Advisory).