Vulnerabilities (CVE)

Filtered by vendor Vmware Subscribe

Filtered by product Access Connector

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-31656	3 Linux, Microsoft, Vmware	6 Linux Kernel, Windows, Access Connector and 3 more	2023-08-08	N/A	9.8 CRITICAL
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an authentication bypass vulnerability affecting local domain users. A malicious actor with network access to the UI may be able to obtain administrative access without the need to authenticate.
CVE-2022-31657	3 Linux, Microsoft, Vmware	6 Linux Kernel, Windows, Access Connector and 3 more	2023-08-08	N/A	9.8 CRITICAL
VMware Workspace ONE Access and Identity Manager contain a URL injection vulnerability. A malicious actor with network access may be able to redirect an authenticated user to an arbitrary domain.