No threat of science and technology - TVD vulnerability information daily - 2022-8-4

Vulnerability Name: VMWARE WORKSPACE ONE Access Improper Authentication
Vulnerability Level: Critical
Vulnerability Number: CVE-2022-31656
Related Coverage: Workspace ONE Access
Vulnerability Status: None
Reference link: https://tvd.wuthreat.com/#/listDetail?TVD_ID=TVD-2022-15929

Vulnerability Name: D-Link DIR882 Command Injection Vulnerability
Vulnerability Level: Critical
Vulnerability Number: CVE-2022-28901;CNNVD-202205-2821
Related: D-Link DIR882 DIR882A1_FW130B06
Vulnerability status: EXP
Reference link: https://tvd.wuthreat.com/#/listDetail?TVD_ID=TVD-2022-09472

Vulnerability Name: GitLab Command Injection Vulnerability
Vulnerability Level: Critical
Vulnerability Number: CVE-2022-2185;CNNVD-202207-289
Related: GitLab 14.0 before 14.10.5;GitLab 15.015.0 prior to .4; 15.1 prior to GitLab 15.1.1
Vulnerability status: POC
Reference link: https://tvd.wuthreat.com/#/listDetail?TVD_ID=TVD-2022-13487

Vulnerability Name: ZOHO ManageEngine Password Manager Pro Remote Code Execution Vulnerability
Vulnerability Level: None
Vulnerability Number: CVE-2022-35405;CNNVD-202207-1615
Related: ZOHO ManageEngine Password Manager Pro
Vulnerability status: EXP
Reference link: https://tvd.wuthreat.com/#/listDetail?TVD_ID=TVD-2022-14748

Vulnerability Name: Microsoft Windows Privilege Permission and Access Control Issue Vulnerability
Vulnerability Level: High Severity
Vulnerability Number: CVE-2022-24527;CNNVD-202204-3114
Related Involvement: Microsoft Windows 7/8/10;Microsoft Windows Server 2019
Vulnerability Status: Automated Exploitation
Reference Link: https://tvd.wuthreat.com/#/listDetail?TVD_ID=TVD-2022-07368