VMware

Identity Manager

28 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2023-20884

  • EPSS 0.27%
  • Published 30.05.2023 16:15:09
  • Last modified 10.01.2025 19:15:31

VMware Workspace ONE Access and VMware Identity Manager contain an insecure redirect vulnerability. An unauthenticated malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitiv...

7.2

CVE-2022-31700

  • EPSS 2.08%
  • Published 14.12.2022 19:15:12
  • Last modified 22.04.2025 16:15:29

VMware Workspace ONE Access and Identity Manager contain an authenticated remote code execution vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 7.2.

7.2

CVE-2022-31665

  • EPSS 6.71%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:05

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a remote code execution vulnerability. A malicious actor with administrator and network access can trigger a remote code execution.

7.8

CVE-2022-31664

  • EPSS 0.23%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a privilege escalation vulnerability. A malicious actor with local access can escalate privileges to 'root'.

6.1

CVE-2022-31663

  • EPSS 1.49%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a reflected cross-site scripting (XSS) vulnerability. Due to improper user input sanitization, a malicious actor with some user interaction may be able to inject javascript...

7.5

CVE-2022-31662

  • EPSS 2.32%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager, Connectors and vRealize Automation contain a path traversal vulnerability. A malicious actor with network access may be able to access arbitrary files.

7.8

CVE-2022-31661

  • EPSS 0.17%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain two privilege escalation vulnerabilities. A malicious actor with local access can escalate privileges to 'root'.

7.8

CVE-2022-31660

  • EPSS 11.15%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager and vRealize Automation contains a privilege escalation vulnerability. A malicious actor with local access can escalate privileges to 'root'.

7.2

CVE-2022-31659

  • EPSS 3.9%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:04

VMware Workspace ONE Access and Identity Manager contain a remote code execution vulnerability. A malicious actor with administrator and network access can trigger a remote code execution.

7.2

CVE-2022-31658

  • EPSS 7.73%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a remote code execution vulnerability. A malicious actor with administrator and network access can trigger a remote code execution.