VMware

One Access

11 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2022-31656

  • EPSS 82.74%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:03

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an authentication bypass vulnerability affecting local domain users. A malicious actor with network access to the UI may be able to obtain administrative access without the...

9.8

CVE-2022-31657

  • EPSS 2.39%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:03

VMware Workspace ONE Access and Identity Manager contain a URL injection vulnerability. A malicious actor with network access may be able to redirect an authenticated user to an arbitrary domain.

7.2

CVE-2022-31658

  • EPSS 7.73%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a remote code execution vulnerability. A malicious actor with administrator and network access can trigger a remote code execution.

7.2

CVE-2022-31659

  • EPSS 3.9%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:04

VMware Workspace ONE Access and Identity Manager contain a remote code execution vulnerability. A malicious actor with administrator and network access can trigger a remote code execution.

7.8

CVE-2022-31660

  • EPSS 11.15%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager and vRealize Automation contains a privilege escalation vulnerability. A malicious actor with local access can escalate privileges to 'root'.

7.8

CVE-2022-31661

  • EPSS 0.17%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain two privilege escalation vulnerabilities. A malicious actor with local access can escalate privileges to 'root'.

7.5

CVE-2022-31662

  • EPSS 2.32%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager, Connectors and vRealize Automation contain a path traversal vulnerability. A malicious actor with network access may be able to access arbitrary files.

6.1

CVE-2022-31663

  • EPSS 1.49%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a reflected cross-site scripting (XSS) vulnerability. Due to improper user input sanitization, a malicious actor with some user interaction may be able to inject javascript...

7.8

CVE-2022-31664

  • EPSS 0.23%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:04

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a privilege escalation vulnerability. A malicious actor with local access can escalate privileges to 'root'.

7.2

CVE-2022-31665

  • EPSS 6.71%
  • Published 05.08.2022 16:15:12
  • Last modified 21.11.2024 07:05:05

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a remote code execution vulnerability. A malicious actor with administrator and network access can trigger a remote code execution.