CVE-2026-22927
Omnissa · Workspace ONE Tunnel for Windows
A local privilege escalation vulnerability in Omnissa Workspace ONE Tunnel for Windows allows authenticated users to gain elevated system privileges.
Executive summary
A local privilege escalation vulnerability in Omnissa Workspace ONE Tunnel for Windows permits low-privileged users to achieve full system compromise.
Vulnerability
This vulnerability (CWE-22) arises from the improper limitation of a pathname to a restricted directory. An attacker with local, low-privileged access can exploit this flaw to manipulate file paths, ultimately leading to privilege escalation to the system level.
Business impact
Successful exploitation allows a local user to execute arbitrary code with elevated system privileges, bypassing standard security boundaries. Given the CVSS score of 7.8, this vulnerability represents a severe threat to internal system integrity and could be leveraged for lateral movement within the network.
Remediation
Immediate Action: Update the Omnissa Workspace ONE Tunnel for Windows client to version 26.03 or newer across all managed endpoints.
Proactive Monitoring: Audit system logs for unexpected privilege changes or unauthorized access attempts to system-level directories.
Compensating Controls: Restrict local user permissions where possible and ensure that endpoint security software is configured to detect and block suspicious process execution by low-privileged accounts.
Exploitation status
Public Exploit Available: false
Analyst recommendation
Local privilege escalation vulnerabilities are frequently used by threat actors to expand their foothold after initial access. Security teams should prioritize the deployment of the 26.03 update to all Windows endpoints to prevent potential system-wide compromise.