VMware

One Access

11 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2022-31656

  • EPSS 84.47%
  • Veröffentlicht 05.08.2022 16:15:12
  • Zuletzt bearbeitet 21.11.2024 07:05:03

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an authentication bypass vulnerability affecting local domain users. A malicious actor with network access to the UI may be able to obtain administrative access without the...

9.8

CVE-2022-31657

  • EPSS 2.46%
  • Veröffentlicht 05.08.2022 16:15:12
  • Zuletzt bearbeitet 21.11.2024 07:05:03

VMware Workspace ONE Access and Identity Manager contain a URL injection vulnerability. A malicious actor with network access may be able to redirect an authenticated user to an arbitrary domain.

7.2

CVE-2022-31658

  • EPSS 4.82%
  • Veröffentlicht 05.08.2022 16:15:12
  • Zuletzt bearbeitet 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a remote code execution vulnerability. A malicious actor with administrator and network access can trigger a remote code execution.

7.2

CVE-2022-31659

  • EPSS 1.99%
  • Veröffentlicht 05.08.2022 16:15:12
  • Zuletzt bearbeitet 21.11.2024 07:05:04

VMware Workspace ONE Access and Identity Manager contain a remote code execution vulnerability. A malicious actor with administrator and network access can trigger a remote code execution.

7.8

CVE-2022-31660

  • EPSS 4.97%
  • Veröffentlicht 05.08.2022 16:15:12
  • Zuletzt bearbeitet 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager and vRealize Automation contains a privilege escalation vulnerability. A malicious actor with local access can escalate privileges to 'root'.

7.8

CVE-2022-31661

  • EPSS 0.16%
  • Veröffentlicht 05.08.2022 16:15:12
  • Zuletzt bearbeitet 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain two privilege escalation vulnerabilities. A malicious actor with local access can escalate privileges to 'root'.

7.5

CVE-2022-31662

  • EPSS 2.19%
  • Veröffentlicht 05.08.2022 16:15:12
  • Zuletzt bearbeitet 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager, Connectors and vRealize Automation contain a path traversal vulnerability. A malicious actor with network access may be able to access arbitrary files.

6.1

CVE-2022-31663

  • EPSS 1.18%
  • Veröffentlicht 05.08.2022 16:15:12
  • Zuletzt bearbeitet 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a reflected cross-site scripting (XSS) vulnerability. Due to improper user input sanitization, a malicious actor with some user interaction may be able to inject javascript...

7.8

CVE-2022-31664

  • EPSS 0.22%
  • Veröffentlicht 05.08.2022 16:15:12
  • Zuletzt bearbeitet 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a privilege escalation vulnerability. A malicious actor with local access can escalate privileges to 'root'.

7.2

CVE-2022-31665

  • EPSS 4.96%
  • Veröffentlicht 05.08.2022 16:15:12
  • Zuletzt bearbeitet 21.11.2024 07:05:05

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a remote code execution vulnerability. A malicious actor with administrator and network access can trigger a remote code execution.