Advanced hackers are actively exploiting a critical remote code execution (RCE) vulnerability, CVE-2022-22954, that affects in VMware Workspace ONE Access (formerly called VMware Identity Manager).

Likely exploited soon Today, Rapid 7 published its disclosure report along with the corresponding Metasploit module that exploits the CVE-2022-30525 by injecting commands in the MTU field.

Researchers developing an exploit module for the Metasploit hacking framework referred to this behavior as a low-interaction remote code execution.

The Metasploit Framework is a collection of and execution platform for known software exploits, or code that harnesses, or exploits, security vulnerabilities in software programs for unintended ...