CVE-2023-34064

Name of the Vulnerable Software and Affected Versions Workspace ONE Launcher (affected versions not specified)

Description A malicious actor with physical access to Workspace ONE Launcher could utilize the Edge Panel feature to bypass setup and gain access to sensitive information. The vulnerability is related to the lack of protection of service data in the Edge Panel component. This could allow an attacker to escalate their privileges and access protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider disabling the Edge Panel feature to minimize the risk of exploitation. Restrict access to sensitive information and ensure that physical access to Workspace ONE Launcher is limited to authorized personnel.