Vmware One_access

11 CVEs affecting Vmware One_access. Latest disclosed: 2022-08-05. Critical: 3, High: 7.

Top CVEs affecting Vmware One_access
CVESeverityScorePublishedSummary
CVE-2022-31657Critical9.82022-08-05VMware Workspace ONE Access and Identity Manager contain a URL injection vulnerability. A malicious actor with network access may be able to redirect an authen…
CVE-2022-31656Critical9.82022-08-05VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an authentication bypass vulnerability affecting local domain users. A malicious…
CVE-2020-4006Critical9.12020-11-23VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector address have a command injection vulnerability.
CVE-2022-31664High7.82022-08-05VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a privilege escalation vulnerability. A malicious actor with local access can esc…
CVE-2022-31661High7.82022-08-05VMware Workspace ONE Access, Identity Manager and vRealize Automation contain two privilege escalation vulnerabilities. A malicious actor with local access can…
CVE-2022-31660High7.82022-08-05VMware Workspace ONE Access, Identity Manager and vRealize Automation contains a privilege escalation vulnerability. A malicious actor with local access can es…
CVE-2022-31662High7.52022-08-05VMware Workspace ONE Access, Identity Manager, Connectors and vRealize Automation contain a path traversal vulnerability. A malicious actor with network access…
CVE-2022-31665High7.22022-08-05VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a remote code execution vulnerability. A malicious actor with administrator and n…
CVE-2022-31659High7.22022-08-05VMware Workspace ONE Access and Identity Manager contain a remote code execution vulnerability. A malicious actor with administrator and network access can tri…
CVE-2022-31658High7.22022-08-05VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a remote code execution vulnerability. A malicious actor with administrator and n…
CVE-2022-31663Medium6.12022-08-05VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a reflected cross-site scripting (XSS) vulnerability. Due to improper user input…