Intrusion Prevention

VMware.Workspace.ONE.Access.dbCheck.Remote.Code.Execution

Description

This indicates an attack attempt to exploit a Remote Code Execution in VMWare Workspace ONE Access.
The vulnerability is due to lack of validation of user supplied inputs to the application. Successful exploitation of this vulnerability could result in remote code execution.

Affected Products

PostgreSQL PostgreSQL_JDBC_Driver prior to 42.2.25
PostgreSQL PostgreSQL_JDBC_Driver 42.3.0 prior to 42.3.2

Impact

System Compromise: Remote attacker can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://github.com/pgjdbc/pgjdbc/commit/f4d0ed69c0b3aae8531d83d6af4c57f22312c813

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Detail
2022-09-19	22.396	Sig Added
2022-09-07	22.387	Default_action:pass:drop
2022-08-30	21.383

ID	52022
Created	Aug 22, 2022
Updated	Apr 17, 2023
Risk
Default Action	drop
Active
Affected OS	Windows, Linux
Affected App	Other