VMware

Workspace One Assist

5 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2022-31685

Warning
  • EPSS 0.06%
  • Published 09.11.2022 21:15:15
  • Last modified 01.05.2025 18:15:47

VMware Workspace ONE Assist prior to 22.10 contains an Authentication Bypass vulnerability. A malicious actor with network access to Workspace ONE Assist may be able to obtain administrative access without the need to authenticate to the application.

9.8

CVE-2022-31686

Warning
  • EPSS 0.57%
  • Published 09.11.2022 21:15:15
  • Last modified 01.05.2025 18:15:48

VMware Workspace ONE Assist prior to 22.10 contains a Broken Authentication Method vulnerability. A malicious actor with network access to Workspace ONE Assist may be able to obtain administrative access without the need to authenticate to the applic...

9.8

CVE-2022-31687

Warning
  • EPSS 0.73%
  • Published 09.11.2022 21:15:15
  • Last modified 01.05.2025 16:15:22

VMware Workspace ONE Assist prior to 22.10 contains a Broken Access Control vulnerability. A malicious actor with network access to Workspace ONE Assist may be able to obtain administrative access without the need to authenticate to the application.

6.1

CVE-2022-31688

Warning
  • EPSS 0.7%
  • Published 09.11.2022 21:15:15
  • Last modified 01.05.2025 16:15:22

VMware Workspace ONE Assist prior to 22.10 contains a Reflected cross-site scripting (XSS) vulnerability. Due to improper user input sanitization, a malicious actor with some user interaction may be able to inject javascript code in the target user's...

9.8

CVE-2022-31689

Warning
  • EPSS 0.61%
  • Published 09.11.2022 21:15:15
  • Last modified 01.05.2025 16:15:22

VMware Workspace ONE Assist prior to 22.10 contains a Session fixation vulnerability. A malicious actor who obtains a valid session token may be able to authenticate to the application using that token.