Full title: VMware Workspace ONE Access Privilege Escalation Exploit 
Category: remote exploits
Platform: multiple
VMware Workspace ONE Access contains a vulnerability whereby the horizon user can escalate their privileges to those of the root user by modifying a file and then restarting the vmware-certproxy service which invokes it. The service control is permitted via the sudo configuration without a password.

# 0day.today @ http://0day.today/