CVE-2026-22927

Omnissa · Workspace ONE Tunnel for Windows

A local privilege escalation vulnerability in Omnissa Workspace ONE Tunnel for Windows allows authenticated users to gain elevated system privileges.

Executive summary

A local privilege escalation vulnerability in Omnissa Workspace ONE Tunnel for Windows permits low-privileged users to achieve full system compromise.

Vulnerability

This vulnerability (CWE-22) arises from the improper limitation of a pathname to a restricted directory. An attacker with local, low-privileged access can exploit this flaw to manipulate file paths, ultimately leading to privilege escalation to the system level.

Business impact

Successful exploitation allows a local user to execute arbitrary code with elevated system privileges, bypassing standard security boundaries. Given the CVSS score of 7.8, this vulnerability represents a severe threat to internal system integrity and could be leveraged for lateral movement within the network.

Remediation

Immediate Action: Update the Omnissa Workspace ONE Tunnel for Windows client to version 26.03 or newer across all managed endpoints.

Proactive Monitoring: Audit system logs for unexpected privilege changes or unauthorized access attempts to system-level directories.

Compensating Controls: Restrict local user permissions where possible and ensure that endpoint security software is configured to detect and block suspicious process execution by low-privileged accounts.

Exploitation status

Public Exploit Available: false

Analyst recommendation

Local privilege escalation vulnerabilities are frequently used by threat actors to expand their foothold after initial access. Security teams should prioritize the deployment of the 26.03 update to all Windows endpoints to prevent potential system-wide compromise.