Vulnerabilities > Vmware > Identity Manager Connector > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-05-30 CVE-2023-20884 Open Redirect vulnerability in VMWare products
VMware Workspace ONE Access and VMware Identity Manager contain an insecure redirect vulnerability. An unauthenticated malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitive information disclosure.
network
low complexity
vmware CWE-601
6.1
6.1
2022-12-14 CVE-2022-31701 Missing Authentication for Critical Function vulnerability in VMWare products
VMware Workspace ONE Access and Identity Manager contain a broken authentication vulnerability.
network
low complexity
vmware CWE-306
5.3
5.3
2022-08-05 CVE-2022-31663 Cross-site Scripting vulnerability in VMWare products
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a reflected cross-site scripting (XSS) vulnerability.
network
low complexity
vmware CWE-79
6.1
6.1