Vulnerabilities > CVE-2023-34064 - Unspecified vulnerability in VMWare Workspace ONE Launcher

CVSS 4.6 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

low complexity

vmware

NVD

Published: 2023-12-12

Updated: 2023-12-18

Summary

Workspace ONE Launcher contains a Privilege Escalation Vulnerability. A malicious actor with physical access to Workspace ONE Launcher could utilize the Edge Panel feature to bypass setup to gain access to sensitive information.

Vulnerable Configurations

Part	Description	Count
Application	Vmware Vmware Workspace ONE Launcher 22.01 Vmware Workspace ONE Launcher 22.04 Vmware Workspace ONE Launcher 22.05 Vmware Workspace ONE Launcher 22.07 Vmware Workspace ONE Launcher 22.10 Vmware Workspace ONE Launcher 23.02 Vmware Workspace ONE Launcher 23.04 Vmware Workspace ONE Launcher 23.07 Vmware Workspace ONE Launcher 23.08	9

References

https://www.vmware.com/security/advisories/VMSA-2023-0027.html